ThreatPress

WordPress Vulnerabilities Database

Back

WordPress N-Media Website Contact Form Plugin - Upload Vulnerability

Product
N-Media Website Contact Form
Description
This vulnerability allows an attacker to upload arbitrary PHP code and execute it.
Solution
Update the plugin.
Classification
Type Remote File Inclusion
References
Exploit-DB
CVE
Name CVE-N/A
Versions
Affected In <= 1.3.4
Fixed In 1.3.5
Disclosure date
2015-04-21
Credits
metasploit