Tevolution <= 2.2.7 - Unrestricted File Upload



Description
Files 'single-upload.php' and 'single_upload.php' affected.

Affects Plugin

fixed in version 2.3.0

References

CVE 2016-10995
URL https://templatic.com/news/security-vulnerability-found-themes/
URL http://wptavern.com/templatic-hacked-files-and-databases-compromised

Classification

Type UPLOAD
CWE CWE-434

Miscellaneous

Submitter ethicalhack3r
Submitter Website https://dewhurstsecurity.com/
Submitter Twitter ethicalhack3r
Views 7855
Verified No
WPVDB ID 8482

Timeline

Publicly Published 2016-04-23 (about 4 years ago)
Added 2016-05-03 (about 4 years ago)
Last Updated 2019-11-28 (7 months ago)

Our Other Services

Online WordPress Vulnerability Scanner WPScan WordPress Security Plugin