ThreatPress

WordPress Vulnerabilities Database

Back

WordPress <= 2.2.0 - Arbitrary File Upload

Product
WordPress
Description
Because of this vulnerability, the authenticated users can upload and execute arbitrary PHP code.
Solution
Update WordPress.
Classification
Type Arbitrary File Upload
References
CVE Mitre
CVE
Name CVE-007-3543
Versions
Affected In <= 2.2.0
Fixed In 2.2.1
Disclosure date
2007-07-03
Credits
Alexander Concha