CVE-2016-10954
The CVE-2016-10954 issue affects the Neosense WordPress theme prior to 1.8, where the qquploader file uploader does not verify user authorization, enabling unrestricted file uploads. The vulnerability arises from the qquploader component, which can place uploaded files (potentially PHP scripts) i...