ThreatPress

WordPress Vulnerabilities Database

Back

WordPress <= 3.1.2 - Arbitrary File Upload vulnerability

Product
WordPress
Description
The file upload functionality has unknown impact and attack vectors, possibly related to dangerous filenames.
Solution
Update WordPress.
Classification
Type Arbitrary File Upload
References
CVE Mitre
CVE
Name CVE-2011-3129
Versions
Affected In <= 3.1.2
Fixed In 3.1.3
Disclosure date
2011-08-10