ThreatPress

WordPress Vulnerabilities Database

Back

WordPress Video Embed & Thumbnail Generator Plugin <= 1.9 - Remote Code Execution

Product
Video Embed & Thumbnail Generator
Description
Because of this vulnerability, the attackers can execute arbitrary commands via unspecified vectors.
Solution
Update the plugin.
Classification
Type Arbitrary Code Execution
OWASP Top 10 A1: Injection
References
CVE Mitre
CVE
Name CVE-2012-1785
Versions
Affected In <= 1.9
Fixed In 2.0
Disclosure date
2012-03-19
Credits
kylegilman