Formidable Forms Pro <= 1.06.02 - ofc_upload_image.php Arbitrary File Upload

Sign up to our free email alerts service for instant vulnerability notifications!

Affects Plugin

fixed in version 1.06.03

References

CVE 2009-4140
EXPLOITDB 10532
METASPLOIT exploit/unix/webapp/open_flash_chart_upload_exec
PACKETSTORM 126583
SECURITYFOCUS 67390

Classification

Type RCE
OWASP Top 10 A1: Injection
CWE CWE-94

Miscellaneous

Views 464
Verified No
WPVDB ID 6803

Timeline

Publicly Published 2014-05-11 (over 3 years ago)
Added 2014-08-01 (over 3 years ago)
Last Updated 2016-11-14 (about 1 year ago)

Copyright & License

Copyright All data and resources contained within this page and this web site is Copyright © The WPScan Team.
License Some of this data may be used for non-commercial purposes, however, any potential commercial usage of this data will require a license. If you would like to inquire about a commercial license please contact us.