Smart Slideshow - upload.php Multiple File Extension Upload Arbitrary Code Execution

Affects Plugin

no known fix
- plugin closed

References

URL https://www.acunetix.com/vulnerabilities/web/wordpress-plugin-smart-slideshow-arbitrary-file-upload-2-4/
URL https://www.acunetix.com/vulnerabilities/web/wordpress-plugin-smart-slideshow-upload-php-arbitrary-file-upload-2-1/

Classification

Type UPLOAD
CWE CWE-434

Miscellaneous

Views 4970
Verified No
WPVDB ID 6112

Timeline

Publicly Published 2014-08-01 (almost 6 years ago)
Added 2014-08-01 (almost 6 years ago)
Last Updated 2020-02-29 (4 months ago)

Our Other Services

Online WordPress Vulnerability Scanner WPScan WordPress Security Plugin