ThreatPress

WordPress Vulnerabilities Database

Back

WordPress TDO Mini Forms Plugin <= 0.13.9 - Remote Code Execution

Product
TDO Mini Forms
Description
This plugin is prone to a remote code execution in tdomf-upload-inline.php.
Solution
Update the plugin.
Classification
Type Arbitrary Code Execution
OWASP Top 10 A1: Injection
References
Packet Storm Security
CVE
Name CVE-N/A
Versions
Affected In <= 0.13.9
Fixed In 0.14.0
Disclosure date
2015-05-15
Credits
Ashiyane Digital Security Team