RSS   Vulnerabilities for 'Wp downloads manager'   RSS

2008-07-30
 
CVE-2008-3362

CWE-20
 

 
Unrestricted file upload vulnerability in upload.php in the Giulio Ganci Wp Downloads Manager module 0.2 for WordPress allows remote attackers to execute arbitrary code by uploading a file with an executable extension via the upfile parameter, then accessing it via a direct request to the file in wp-content/plugins/downloads-manager/upload/.

 

 >>> Vendor: Wordpress 54 Products
Wordpress
Wordpress mu
BLIX
Blixed
Blixkrieg
Unamed theme
Unamed theme se
Sirius
POOL
Wordpressclassic
Pictpress
Wp-contactform
Cryptographp
Math comment spam protection plugin
Captcha
Filemanager
Wp forum
Wp cal plugin
Fgallery plugin
Adserve
Permalinks migration plugin
Wassup plugin
Wordspew
St newsletter plugin
Wp-footnotes
Search unleashed plugin
Dean logan wp-people plugin
Photo album plugin
Sniplets plugin
Wp download
WPSS
Download monitor plugin
Upload file plugin
Wp downloads manager
Spambam plugin
Page flip image gallery plugin
Peter's math anti-spam for wordpress
Wordpress-users
Fcchat widget
Plugin newsletter plugin
Alert before you post
Lanoba social plugin
Slideshow gallery2
Pay-with-tweet
Audio player
Terillion reviews plugin
Wp maintenance mode plugin
Booking system
Twitget plugin
Alipay plugin
Cbi referral manager
Amasin plugin
Gb gallery slideshow plugin
Mail plugin


Copyright 2017, cxsecurity.com

 

Back to Top