ThreatPress

WordPress Vulnerabilities Database

Back

WordPress PhotoSmash Galleries Plugin - Arbitrary File Upload

Product
Page Flip Image Gallery
Description
PhotoSmash Galleries plugin is prone to an arbitrary file upload vulnerability via "bwbps-uploader.php". It allows an attacker to upload arbitrary files to the affected computer.
Solution
Upgrade the plugin.
Classification
Type Remote File Inclusion
References
Exploit-DB
CVE
Name CVE-N/A
Versions
Affected In <= 1.0
Fixed In 1.1
Disclosure date
2013-12-08
Credits
Ashiyane Digital Security Team