Unrestricted file upload vulnerability in includes/doajaxfileupload.php in the MM Forms Community plugin 2.2.5 and 2.2.6 for WordPress allows remote attackers to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in upload/temp.
References
Configurations
Configuration 1 (hide)
AND |
|
Information
Published : 2012-06-15 17:55
Updated : 2017-08-28 18:31
NVD link : CVE-2012-3574
Mitre link : CVE-2012-3574
JSON object : View
CWE
Products Affected
wordpress
- wordpress
tbelmans
- mm_forms_community