CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
EPSS
Percentile
70.7%
The file upload functionality in WordPress 3.1 before 3.1.3 and 3.2 before
Beta 2, when running “on hosts with dangerous security settings,” has
unknown impact and attack vectors, possibly related to dangerous filenames.