CVE-2014-5014

CVE-2014-5014

EPSS 3.6%

The WordPress Flash Uploader plugin before 3.1.3 for WordPress allows remote attackers to execute arbitrary commands via vectors related to invalid characters in image_magic_path.

Produtos afetados

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

https://wordpress.org/plugins/wordpress-flash-uploader/changelog/https://wordpress.org/support/topic/vulnerability-discovered-2/