Formidable Forms Pro <= 1.06.02 - ofc_upload_image.php Arbitrary File Upload

Sign up to our free email alerts service for instant vulnerability notifications!

Affects

Plugin formidable
fixed in version 1.06.03

References

CVE 2009-4140
EXPLOITDB 10532
METASPLOIT exploit/unix/webapp/open_flash_chart_upload_exec
PACKETSTORM 126583
SECURITYFOCUS 67390

Classification

Type RCE
OWASP Top 10 A1: Injection
CWE CWE-94

Miscellaneous

Views 416
Verified No
WPVDB ID 6803

Timeline

Publicly Published 2014-05-11 (over 2 years ago)
Added 2014-08-01 (over 2 years ago)
Last Updated 2016-11-14 (20 days ago)

Copyright & License

Copyright All data and resources contained within this page and this web site is Copyright © The WPScan Team.
License Some of this data may be used for non-commercial purposes, however, any potential commercial usage of this data will require a license. If you would like to inquire about a commercial license please contact us.