CVE-2015-5681

Unrestricted file upload vulnerability in upload.php in the Powerplay Gallery plugin 3.3 for WordPress allows remote attackers to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in *_uploadfolder/big/.
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

cpe:2.3:a:wpslideshow:powerplay_gallery:3.3:*:*:*:*:wordpress:*:*

Information

Published : 2015-08-18 08:59

Updated : 2015-08-19 10:52


NVD link : CVE-2015-5681

Mitre link : CVE-2015-5681


JSON object : View

Advertisement

dedicated server usa

Products Affected

wpslideshow

  • powerplay_gallery