Back to list
*Note: Email address will appear as "user domain ext" to prevent harvesting.
Arbitrary File Upload in '1 Flash Gallery' Wordpress Plugin
Sep 07 2011 01:19AM
supernothing spareclockcycles org
The '1 Flash Gallery' WordPress plugin (http://wordpress.org/extend/plugins/1-flash-gallery/) is vulnerable to an arbitrary file upload vulnerability. This vulnerability is present from version 1.30 until version 1.5.7. The plugin has been downloaded an estimated 460,000 times...
[ more ]
Copyright 2010, SecurityFocus