20 matches found
EUVD-2015-5631
Malware in sbrugna...
EUVD-2015-5553
Malware in sbrugna...
EUVD-2015-5632
Malware in sbrugna...
WordPress Powerplay Gallery plugin file upload vulnerability
WordPress is the WordPress Software Foundation's set of blogging platform developed using the PHP language, the platform supports PHP and MySQL server set up a personal blog site.Powerplay Gallery is one of the gallery plug-ins for displaying images. A file upload vulnerability exists in the...
CVE-2015-5682
upload.php in the Powerplay Gallery plugin 3.3 for WordPress allows remote attackers to create arbitrary directories via vectors related to the targetDir variable...
Design/Logic Flaw
upload.php in the Powerplay Gallery plugin 3.3 for WordPress allows remote attackers to create arbitrary directories via vectors related to the targetDir variable...
CVE-2015-5682
The CVE concerns the WordPress Powerplay Gallery plugin, version 3.3, where upload.php allows remote attackers to create arbitrary directories through vectors related to the targetDir parameter. This is a remote, unauthenticated vulnerability that enables directory creation, potentially aiding fu...
CVE-2015-5682
upload.php in the Powerplay Gallery plugin 3.3 for WordPress allows remote attackers to create arbitrary directories via vectors related to the targetDir variable...
WordPress Powerplay Gallery Plugin Arbitrary File Upload Vulnerability
WordPress is the WordPress Software Foundation's set of blogging platform developed using the PHP language, the platform supports PHP and MySQL server set up a personal blog site.Powerplay Gallery is one of the gallery plug-ins for displaying images. An arbitrary file upload vulnerability exists ...
CVE-2015-5681
Unrestricted file upload vulnerability in upload.php in the Powerplay Gallery plugin 3.3 for WordPress allows remote attackers to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in uploadfolder/big/...
CVE-2015-5599
Multiple SQL injection vulnerabilities in upload.php in the Powerplay Gallery plugin 3.3 for WordPress allow remote attackers to execute arbitrary SQL commands via the 1 albumid or 2 name parameter...
Unrestricted file upload
Unrestricted file upload vulnerability in upload.php in the Powerplay Gallery plugin 3.3 for WordPress allows remote attackers to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in uploadfolder/big/...
Sql injection
Multiple SQL injection vulnerabilities in upload.php in the Powerplay Gallery plugin 3.3 for WordPress allow remote attackers to execute arbitrary SQL commands via the 1 albumid or 2 name parameter...
CVE-2015-5599
CVE-2015-5599 affects the WordPress plugin Powerplay Gallery (plugin version 3.3 and earlier) with multiple SQL injection vulnerabilities in upload.php. Attackers could remotely execute arbitrary SQL commands via the albumid or name parameters, as described by multiple sources (NVD entry and asso...
CVE-2015-5599
Multiple SQL injection vulnerabilities in upload.php in the Powerplay Gallery plugin 3.3 for WordPress allow remote attackers to execute arbitrary SQL commands via the 1 albumid or 2 name parameter...
CVE-2015-5681
Unrestricted file upload vulnerability in upload.php in the Powerplay Gallery plugin 3.3 for WordPress allows remote attackers to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in uploadfolder/big/...
CVE-2015-5681
CVE-2015-5681 affects the WordPress Powerplay Gallery plugin, version 3.3. It describes an unrestricted file upload vulnerability in upload.php that allows a remote attacker to upload a file with an executable extension and then access it via a direct request to the file in *_uploadfolder/big/, p...
WordPress Powerplay Gallery Plugin <= 3.3 - Unrestricted File Upload
This vulnerability allows an attacker to execute arbitrary code by uploading a file with an executable extension. After that an attacker access it via a direct request to the file in uploadfolder/big/. Solution Update the plugin...
WordPress Powerplay Gallery Plugin <= 3.3 - Multiple SQL Injection
This vulnerability is in upload.php. It allows an attacker to execute arbitrary SQL commands via the "albumid" or "name" parameter. Solution Update the plugin...
Wordpress Plugins - Powerplay Gallery Arbitrary File Upload Vulnerability
Exploit for php platform in category web applications 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 1 0 +...