RSS   Vulnerabilities for 'Social photo gallery'   RSS

2019-11-18
 
CVE-2019-14467

CWE-20
 

 
The Social Photo Gallery plugin 1.0 for WordPress allows Remote Code Execution by creating an album and attaching a malicious PHP file in the cover photo album, because the file extension is not checked.

 


Copyright 2024, cxsecurity.com

 

Back to Top