ThreatPress

WordPress Vulnerabilities Database

Back

WordPress Gmedia Gallery Plugin 1.2.1 - Shell Upload

Product
Gmedia Gallery
Description
Because of this vulnerability, any user could upload PHP files.
Solution
Update the plugin.
Classification
Type Arbitrary File Upload
OWASP Top 10 A1: Injection
References
Packet Storm Security
CVE
Name CVE-N/A
Versions
Affected In <= 1.2.1
Fixed In 1.2.2
Disclosure date
2014-09-17
Credits
Claudio Viviani
Submitter
ThreatPress