Summary
The Mailing List plug-in for WordPress is prone to a remote file- include vulnerability because it fails to sufficiently sanitize user- supplied input.
Exploiting this issue could allow an attacker to compromise the application and the underlying system
other attacks are also
possible.
Mailing List 1.3.2 is vulnerable
other versions may also be affected.
References
Severity
Classification
-
CVSS Base Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P
Related Vulnerabilities
- ActivePerl perlIS.dll Buffer Overflow
- Adobe ColdFusion Information Disclosure Vulnerability
- Apache Solr XML External Entity(XXE) Vulnerability-02 Jan-14
- AlienVault OSSIM SQL Injection and Remote Code Execution Vulnerabilities
- 3Com OfficeConnect VPN Firewall Default Password Security Bypass Vulnerability