The Slideshow Gallery WordPress plugin was affected by an Arbitrary File Upload security vulnerability.
packetstormsecurity.com/files/131526/
seclists.org/bugtraq/2014/Sep/1
vulners.com/exploitdb/EDB-ID:34514
vulners.com/exploitdb/EDB-ID:34681