WP Business intelligence lite <= 1.0.6 - Remote Code Execution Exploit

Affects Plugin

fixed in version 1.1

References

PACKETSTORM 125927
URL https://cxsecurity.com/issue/WLB-2014030243
URL https://github.com/espreto/wpsploit/blob/master/modules/exploits/unix/webapp/wp_business_intelligence_file_upload.rb

Classification

Type RCE
OWASP Top 10 A1: Injection
CWE CWE-94

Miscellaneous

Views 4125
Verified No
WPVDB ID 7200

Timeline

Publicly Published 2014-08-01 (over 5 years ago)
Added 2014-08-01 (over 5 years ago)
Last Updated 2019-10-23 (4 months ago)

Our Other Services

Online WordPress Vulnerability Scanner WPScan WordPress Security Plugin