WordPress Holding Pattern Theme Arbitrary File Upload (CVE-2015-1172)

An unauthorized file upload vulnerability has been reported in WordPress Holding Pattern Theme. A remote attacker could exploit this vulnerability by uploading a file to a server running the vulnerable application. Successful exploitation of this vulnerability could allow a remote attacker to...

WordPress Holding Pattern Theme 0.6 File Upload

File upload vulnerability in WordPress Holding Pattern Theme admin/upload-file.php Vulnerability Type: File Upload For the exploit source code contact DSquare Security sales team...

Unrestricted file upload

Unrestricted file upload vulnerability in admin/upload-file.php in the Holding Pattern theme aka holdingpattern 0.6 and earlier for WordPress allows remote attackers to execute arbitrary PHP code by uploading a file with a PHP extension, then accessing it via a direct request to the file in an...

WordPress Holding Pattern Theme Arbitrary File Upload Vulnerability

WordPress is a set of WordPress Software Foundation's blogging platform developed using the PHP language, which supports personal blog sites on servers with PHP and MySQL. WordPress Holding Pattern Theme suffers from an arbitrary file upload vulnerability due to the program failing to adequately...

WordPress Holding Pattern Theme <= 0.6 - Unrestricted File Upload

This vulnerability allows an attacker to upload arbitrary files. The application uses limited validation which means unauthorized upload is allowed. Solution Update the theme...