ThreatPress

WordPress Vulnerabilities Database

Back

WordPress User Photo Component - Remote File Upload

Product
User Photo
Description
Remote file upload vulnerability was found in this plugin. When photo is uploaded, it is validated only partially. There is a possibility to upload a backdoor on the server hosting WordPress and it can be executed independently from that if the photo has not been yet approved. Also, there is a cross-site scripting vulnerability .
Solution
This vulnerability can be limited by hardening of the web server.
Classification
Type Arbitrary File Upload
References
Exploit-DB
CVE
Name CVE-2013-1916
Versions
Affected In 0.9.4
Fixed In 0.9.5
Disclosure date
2011-02-17
Credits
DVtools