Uploadify 1.0 - Unauthenticated Arbitrary File Upload



Description
This vulnerability has been seen exploited in the wild.

Affects Plugin

no known fix
- plugin closed

References

PacketStorm 98652

Classification

Type RFI
OWASP Top 10 A1: Injection
CWE CWE-98

Miscellaneous

Original Researcher GotGeek Labs
Views 4961
Verified No
WPVDB ID 7302

Timeline

Publicly Published 2011-02-21 (over 9 years ago)
Added 2014-08-01 (almost 6 years ago)
Last Updated 2020-02-20 (5 months ago)

Our Other Services

Online WordPress Vulnerability Scanner WPScan WordPress Security Plugin