ThreatPress

WordPress Vulnerabilities Database

Back

WordPress ShortCode Plugin 0.2.3 - Local File Inclusion

Product
ShortCode
Description
This vulnerability can be exploited to include arbitrary files.
Solution
Upgrade the plugin.
Classification
Type Local File Inclusion
References
Exploit-DB
CVE
Name CVE-2014-5465
Versions
Affected In <= 0.2.3
Fixed In 0.2.4
Disclosure date
2014-08-28
Credits
Mehdi Karout and Christian Galeone