CVE-2015-1172
The CVE-2015-1172 entry describes an Unrestricted File Upload vulnerability in WordPress Holding Pattern Theme (Holding Pattern) 0.6 and earlier, due to a faulty admin/upload-file.php that permits uploading PHP files without validation. A remote attacker can upload a PHP payload and trigger arbit...