EUVD-2014-4887

Malware in sbrugna...

WordPress Gravity Upload Ajax Plugin Arbitrary File Upload Vulnerability

WordPress is the WordPress Software Foundation's set of blogging platform developed using the PHP language, the platform supports PHP and MySQL servers to set up a personal blog site.Gravity Upload Ajax plugin is used in one of the Gravity Forms upload plugin. An arbitrary file upload vulnerabili...

CVE-2014-4972

Unrestricted file upload vulnerability in the Gravity Upload Ajax plugin 1.1 and earlier for WordPress allows remote attackers to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file under wp-content/uploads/gravityforms...

Unrestricted file upload

Unrestricted file upload vulnerability in the Gravity Upload Ajax plugin 1.1 and earlier for WordPress allows remote attackers to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file under wp-content/uploads/gravityforms...

CVE-2014-4972

Unrestricted file upload vulnerability in the Gravity Upload Ajax plugin 1.1 and earlier for WordPress allows remote attackers to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file under wp-content/uploads/gravityforms...

CVE-2014-4972

CVE-2014-4972 concerns the WordPress Gravity Upload Ajax plugin, affected through version 1.1 and earlier. The vulnerability is an unrestricted/arbitrary file upload in the plugin, allowing a remote attacker to upload a file with an executable extension and then access it via a direct request to ...

WordPress Gravity Upload Ajax Plugin <= 1.1 - Arbitrary File Upload

This vulnerability allows remote unauthenticated user to upload files of any type. Solution Update the plugin...