Unauthenticated File Upload Vulnerabilities

Vulnerability Name CVE CWE Severity
Arbitrary local file read via file upload CWE-200  High
ColdFusion 8 FCKEditor file upload vulnerability CVE-2009-2265  CWE-22  High
FCKeditor arbitrary file upload CVE-2009-2265  CWE-22  Medium
File upload XSS CWE-79  High
File upload XSS (Java applet) CWE-79  High
Joomla! Core 1.5.12 Arbitrary File Upload (1.5.12 - 1.5.12) CVE-2011-4906  CVE-2011-4908  CWE-434   High
Joomla! Core 1.5.x Arbitrary File Upload (1.5.0 - 1.5.15) CVE-2010-1433  CWE-434   High
Joomla! Core 2.5.x Arbitrary File Upload (2.5.0 - 2.5.13) CVE-2013-5576  CWE-434   High
Joomla! Core 3.x.x Arbitrary File Upload (3.0.0 - 3.1.4) CVE-2013-5576  CWE-434   High
Joomla! Core Arbitrary File Upload (2.5.0 - 3.8.7) CVE-2018-11322  CWE-434   High
Unrestricted file upload CWE-434  High
WordPress MailPoet Newsletters (wysija-newsletters) unauthenticated file upload CWE-434  High
WordPress OptimizePress unrestricted file upload CVE-2013-7102  CWE-20  High
WordPress Plugin 1 Flash Gallery 'upload.php' Arbitrary File Upload (1.5.7) CWE-434  High
WordPress Plugin 3D Banner Rotator 'upload.php' Arbitrary File Upload (2.1) CWE-434  High
WordPress Plugin 3D Flick Slideshow 'upload.php' Arbitrary File Upload (2.1) CWE-434  High
WordPress Plugin 360 Product Rotation Arbitrary File Upload (1.2.4) CWE-434  High
WordPress Plugin A. Gallery TimThumb Arbitrary File Upload (0.9rev378511) CVE-2011-4106  CWE-20  High
WordPress Plugin AccessPress Anonymous Post Pro Arbitrary File Upload (3.1.9) CVE-2017-16949  CWE-434   High
WordPress Plugin ACF Frontend display Arbitrary File Upload (2.0.5) CWE-434   High
WordPress Plugin Adblock Blocker Arbitrary File Upload (0.0.1) CWE-434  High
WordPress Plugin Advanced AJAX Page Loader Arbitrary File Upload (2.7.6) CWE-434  High
WordPress Plugin Ajax Load More Arbitrary File Upload (2.8.1.1) CWE-434   High
WordPress Plugin Ajax Multi Upload 'upload.php' Arbitrary File Upload (1.1) CWE-434  High
WordPress Plugin Akeeba Backup CORE for WordPress Arbitrary File Upload (1.1.3) CVE-2014-7228  CWE-310  High
WordPress Plugin All Post Contact Form Arbitrary File Upload (1.1.4) CWE-434   High
WordPress Plugin AllWebMenus WordPress Menu 'actions.php' Arbitrary File Upload (1.1.8) CVE-2012-1010  CVE-2012-1011  CWE-264  High
WordPress Plugin Annonces 'theme.php' Arbitrary File Upload (1.2.0.1) CWE-434  High
WordPress Plugin Another WordPress Classifieds Arbitrary File Upload (3.3.2) CWE-434   High
WordPress Plugin ArcadePress 'upload.php' Arbitrary File Upload (0.65) CWE-434  High
WordPress Plugin Asset Manager 'upload.php' Arbitrary File Upload (0.3) CWE-434  High
WordPress Plugin Attachment Manager Arbitrary File Upload (2.1.1) CWE-434  High
WordPress Plugin Auctions 'upload.php' Arbitrary File Upload (2.0.1.3) CWE-434  High
WordPress Plugin Auto Attachments TimThumb Arbitrary File Upload (0.3) CVE-2011-4106  CWE-20  High
WordPress Plugin Aviary Image Editor Add-on For Gravity Forms Arbitrary File Upload (3.0) CVE-2015-4455  CWE-434   High
WordPress Plugin BePro Listings Arbitrary File Upload (2.2.0020) CWE-434   High
WordPress Plugin Blaze Slideshow 'upload.php' Arbitrary File Upload (2.4) CWE-434  High
WordPress Plugin Blaze Slideshow Arbitrary File Upload (2.7) CWE-434   High
WordPress Plugin Bliss Gallery 'upload.php' Arbitrary File Upload (2.1) CWE-434  High
WordPress Plugin Bliss Gallery Arbitrary File Upload (2.3) CWE-434   High
WordPress Plugin CAC Featured Content TimThumb Arbitrary File Upload (0.8) CVE-2011-4106  CWE-20  High
WordPress Plugin Carousel slideshow 'upload.php' Arbitrary File Upload (3.9) CWE-434  High
WordPress Plugin Carousel slideshow Arbitrary File Upload (3.11) CWE-434   High
WordPress Plugin Category Grid View Gallery TimThumb Arbitrary File Upload (0.1.1) CVE-2011-4106  CWE-20  High
WordPress Plugin Category List Portfolio Page TimThumb Arbitrary File Upload (1.2.3) CVE-2011-4106  CWE-20  High
WordPress Plugin Catpro Gallery Arbitrary File Upload (3.8) CWE-434   High
WordPress Plugin cformsII Arbitrary File Upload (14.7) CVE-2014-9473  CWE-434  High
WordPress Plugin ChenPress Arbitrary File Upload (3.0) CWE-434  High
WordPress Plugin ChikunCount Arbitrary File Upload (1.3) CWE-434   High
WordPress Plugin Church Admin Arbitrary File Upload (1.2530) CWE-434   High
WordPress Plugin Cimy User Extra Fields Arbitrary File Upload (2.3.7) CWE-434  High
WordPress Plugin Cms Pack TimThumb Arbitrary File Upload (1.3) CVE-2011-4106  CWE-20  High
WordPress Plugin Comment Extra Fields 'cef-upload.php' Arbitrary File Upload (1.7) CWE-434  High
WordPress Plugin Complete Gallery Manager for WordPress Arbitrary File Upload (3.3.3) CVE-2013-5962  CWE-434  High
WordPress Plugin Contact Form 7 Arbitrary File Upload (3.5.2) CWE-434  High
WordPress Plugin Contact Form 7 Arbitrary File Upload (3.5.3) CWE-434  High
WordPress Plugin Contus HD FLV Player 'uploadVideo.php' Arbitrary File Upload (1.7) CWE-434  High
WordPress Plugin CONTUS VBLOG-Video Blogging 'save.php' Arbitrary File Upload (1.0) CWE-434  High
WordPress Plugin Convert Docx2post Arbitrary File Upload (1.4) CWE-434   High
WordPress Plugin CopySafe PDF Protection Arbitrary File Upload (0.6) CWE-434  High
WordPress Plugin Creative Contact Form-The Best WordPress Contact Form Builder Arbitrary File Upload (0.9.7) CVE-2014-7969   CWE-94  High
WordPress Plugin Csv2WPeC Coupon Arbitrary File Upload (1.1) CVE-2015-1000013  CWE-434   High
WordPress Plugin Custom Background 'uploadify.php' Arbitrary File Upload (1.01) CWE-434  High
WordPress Plugin Custom Content Type Manager 'upload_form.php' Arbitrary File Upload (0.9.5.13) CWE-434  High
WordPress Plugin DB Toolkit 'uploadify.php' Arbitrary File Upload (0.1.10) CWE-434  High
WordPress Plugin Dean's FCKEditor with pwwang's code Arbitrary File Upload (1.0.0) CWE-20  High
WordPress Plugin Delete All Comments Arbitrary File Upload (2.0) CWE-434   High
WordPress Plugin Developer Tools Arbitrary File Upload (1.1.4) CWE-434   High
WordPress Plugin DOP Slider Arbitrary File Upload (1.0) CWE-434   High
WordPress Plugin Downloads Manager 'upload.php' Arbitrary File Upload (0.2) CVE-2008-3362  CWE-20  High
WordPress Plugin Downloads Manager Arbitrary File Upload (1.0) CWE-434  High
WordPress Plugin DP Thumbnail TimThumb Arbitrary File Upload (1.0) CVE-2011-4106  CWE-20  High
WordPress Plugin Drag & Drop File Uploader 'dnd-upload.php' Arbitrary File Upload (0.1) CWE-434  High
WordPress Plugin DukaPress TimThumb Arbitrary File Upload (2.3.2) CVE-2011-4106  CWE-20  High
WordPress Plugin Easy Comment Uploads 'upload.php' Arbitrary File Upload (0.61) CWE-434  High
WordPress Plugin eCommerce Shopping Cart by WP EasyCart Arbitrary File Upload (3.0.8) CVE-2014-9308  CWE-434  High
WordPress Plugin ecSTATic Arbitrary File Upload (0.9933) CWE-434  High
WordPress Plugin EditorMonkey Remote File Upload (2.5) CWE-20  High
WordPress Plugin Enable Media Replace SQL Injection and Arbitrary File Upload Vulnerabilities (2.3) CWE-89  CWE-434  High
WordPress Plugin Estatik Arbitrary File Upload (2.2.5) CWE-434  High
WordPress Plugin Estatik Arbitrary File Upload (2.3.0) CWE-434  High
WordPress Plugin Evarisk 'uploadPhotoApres.php' Arbitrary File Upload (5.1.5.4) CWE-434  High
WordPress Plugin Export WordPress data to XML/CSV Arbitrary File Upload (0.9) CWE-434  High
WordPress Plugin Extend WordPress-Various Shortcodes & Widgets TimThumb Arbitrary File Upload (2.1.01) CVE-2011-4106  CWE-20  High
WordPress Plugin Fancy Gallery 'image-upload.php' Arbitrary File Upload (1.2.4) CWE-434  High
WordPress Plugin Fast Image Adder Arbitrary File Upload (1.1) CVE-2015-1000001  CWE-434   High
WordPress Plugin FCChat Widget 'Upload.php' Arbitrary File Upload (2.2.13.1) CVE-2012-3578  CWE-264  High
WordPress Plugin File Uploader Arbitrary File Upload (1.1) CWE-434   High
WordPress Plugin flickr picture backup Arbitrary File Upload (0.7) CVE-2017-1002016  CWE-434  High
WordPress Plugin Flip Book 'php.php' Arbitrary File Upload (1.0) CWE-434  High
WordPress Plugin Font Uploader 'font-upload.php' Arbitrary File Upload (1.2.4) CVE-2012-3814  CWE-434  High
WordPress Plugin Football Pool Arbitrary File Upload (2.6.3) CWE-434   High
WordPress Plugin Formidable Forms-Form Builder for WordPress Arbitrary File Upload (1.06.02) CWE-94  High
WordPress Plugin FoxyPress 'uploadify.php' Arbitrary File Upload (0.4.2.1) CWE-434  High
WordPress Plugin Front-end Editor 'upload.php' Arbitrary File Upload (2.2.1) CWE-434  High
WordPress Plugin Front end file upload and manager 'doupload.php' Arbitrary File Upload (1.8) CWE-434  High
WordPress Plugin Front end file upload and manager Arbitrary File Upload (3.3) CVE-2014-5324  CWE-94  High
WordPress Plugin Front end file upload and manager Arbitrary File Upload (3.7) CWE-434   High
WordPress Plugin Front end file upload and manager Arbitrary File Upload (3.9) CWE-434  High
WordPress Plugin Front End Upload 'upload.php' Arbitrary File Upload (0.5.3) CWE-434  High
WordPress Plugin Front End Upload Arbitrary File Upload (0.5.4.4) CWE-434  High
WordPress Plugin Front File Manager 'upload.php' Arbitrary File Upload (0.1) CWE-434  High
WordPress Plugin Gallery by BestWebSoft 'php.php' Arbitrary File Upload (3.06) CWE-434  High
WordPress Plugin Genesis Simple Defaults Arbitrary File Upload (1.0.0) CWE-434  High
WordPress Plugin Gmedia Gallery-Photo Gallery, Image Slider, Music Player, Video Player, Media Library Arbitrary File Upload (1.2.1) CWE-20  High
WordPress Plugin Grapefile File Sharing 'grapeupload.php' Arbitrary File Upload (1.1) CWE-434  High
WordPress Plugin Gravity Forms Advanced File Uploader Unspecified Vulnerability (1.18) High
WordPress Plugin Gravity Forms Arbitrary File Upload (1.8.19) CWE-434  High
WordPress Plugin Gravity Upload Ajax Arbitrary File Upload (1.1) CVE-2014-4972  CWE-434   High
WordPress Plugin Homepage SlideShow 'upload.php' Arbitrary File Upload (2.0) CWE-434  High
WordPress Plugin Homepage SlideShow Arbitrary File Upload (2.3) CWE-434   High
WordPress Plugin How to Create an App for Android iPhone Easytouch Arbitrary File Upload (3.0) CVE-2017-1002000  CWE-434   High
WordPress Plugin HTML5 AV Manager for WordPress 'custom.php' Arbitrary File Upload (0.2.7) CWE-434  High
WordPress Plugin Hungred Post Thumbnail 'hpt_file_upload.php' Arbitrary File Upload (2.1.9) CWE-434  High
WordPress Plugin IGIT Posts Slider Widget TimThumb Arbitrary File Upload (1.1) CVE-2011-4106  CWE-20  High
WordPress Plugin IGIT Related Posts With Thumb Image After Posts TimThumb Arbitrary File Upload (3.9.7) CVE-2011-4106  CWE-20  High
WordPress Plugin Image Gallery with Slideshow 'upload-file.php' Arbitrary File Upload (1.5) CWE-20  High
WordPress Plugin Image News slider 'upload.php' Arbitrary File Upload (3.3) CVE-2012-4327  CWE-434  High
WordPress Plugin Image News slider Arbitrary File Upload (3.5) CWE-434   High
WordPress Plugin Import any XML or CSV File to WordPress Arbitrary File Upload (3.2.3) CWE-434  High
WordPress Plugin Import any XML or CSV File to WordPress Pro Arbitrary File Upload (4.1.0) CWE-434  High
WordPress Plugin InBoundio Marketing Arbitrary File Upload (2.0.3) CWE-434   High
WordPress Plugin Infusionsoft Gravity Forms Add-on Arbitrary File Upload (1.5.10) CVE-2014-6446  CWE-94  High
WordPress Plugin Instinct e-Commerce Arbitrary File Upload (3.4) CVE-2008-6811  CWE-434  High
WordPress Plugin Invit0r 'ofc_upload_image.php' Arbitrary File Upload (0.22) CWE-434  High
WordPress Plugin IP Logger Arbitrary File Upload (3.1) CWE-434   High
WordPress Plugin iSlidex TimThumb Arbitrary File Upload (2.7) CVE-2011-4106  CWE-20  High
WordPress Plugin Jssor Slider Arbitrary File Upload (1.3) CWE-434  High
WordPress Plugin Katalyst TimThumb 'timthumb.php' Arbitrary File Upload (1.0) CWE-434  High
WordPress Plugin Kino Gallery TimThumb Arbitrary File Upload (1.0) CVE-2011-4106  CWE-20  High
WordPress Plugin Kish Guest Posting 'uploadify.php' Arbitrary File Upload (1.2) CVE-2012-1125  CVE-2012-5318  CWE-434   High
WordPress Plugin Lazy SEO Arbitrary File Upload (1.3.2) CVE-2013-5961  CWE-434  High
WordPress Plugin LB Mixed Slideshow 'upload.php' Arbitrary File Upload (1.0) CWE-434  High
WordPress Plugin LearnDash LMS Arbitrary File Upload (2.5.3) CWE-434   High
WordPress Plugin Lim4wp 'upload.php' Arbitrary File Upload (1.1.1) CWE-434  High
WordPress Plugin LISL Last-Image Slider TimThumb Arbitrary File Upload (1.0) CVE-2011-4106  CWE-20  High
WordPress Plugin LOGOSWARE SUITE Uploader Arbitrary File Upload (1.1.6) CWE-434   High
WordPress Plugin MAC PHOTO GALLERY 'upload-file.php' Arbitrary File Upload (2.7) CWE-434  High
WordPress Plugin Magic Fields Arbitrary File Upload (1.6.3.2) CWE-434   High
WordPress Plugin Magn WP Drag and Drop Upload Arbitrary File Upload (1.1.4) CWE-20  High
WordPress Plugin MailCWP Arbitrary File Upload (1.99) CVE-2015-1000000  CWE-434   High
WordPress Plugin MailCWP Arbitrary File Upload (1.100) CVE-2016-1000156  CWE-434   High
WordPress Plugin MailPoet 2 Arbitrary File Upload (2.6.7) CVE-2014-4725  CVE-2014-4726  CWE-434  High
WordPress Plugin MapSVG Lite Arbitrary File Upload (4.0.5) CWE-434   High
WordPress Plugin Matrix Gallery 'upload.php' Arbitrary File Upload (2.1) CWE-434  High
WordPress Plugin MediaRSS external gallery TimThumb Arbitrary File Upload (0.1) CVE-2011-4106  CWE-20  High
WordPress Plugin MiniMax-Page Layout Builder Arbitrary File Upload (1.7.1) CWE-94  High
WordPress Plugin MM Forms Community 'doajaxfileupload.php' Arbitrary File Upload (2.2.6) CVE-2012-3574  CWE-434  High
WordPress Plugin Mobile App Native (Make a mobile app-Native iPhone & Android Mobile App FREE) Arbitrary File Upload (3.0) CVE-2017-6104  CWE-434   High
WordPress Plugin Monsters Editor for WP Super Edit Arbitrary File Upload (1.1) CWE-434   High
WordPress Plugin N-Media Post Front-end Form Arbitrary File Upload (1.0) CWE-434  High
WordPress Plugin N-Media Website Contact Form with File Upload Arbitrary File Upload (1.3.4) CWE-434   High
WordPress Plugin N-Media Website Contact Form with File Upload Arbitrary File Upload (2.1) CWE-434  High
WordPress Plugin N-Media Website Contact Form with File Upload Local File Inclusion (1.5) CWE-22  High
WordPress Plugin NextGEN Gallery-WordPress Gallery Arbitrary File Upload (1.9.12) CVE-2013-3684   CWE-434  High
WordPress Plugin NextGEN Gallery-WordPress Gallery Arbitrary File Upload (2.1.10) CWE-434   High
WordPress Plugin Nmedia WordPress Member Conversation 'doupload.php' Arbitrary File Upload (1.3) CVE-2012-3577  CWE-264  High
WordPress Plugin Omni Secure Files 'upload.php' Arbitrary File Upload (0.1.13) CWE-434  High
WordPress Plugin Page Builder:KingComposer-Free Drag and Drop page builder by King-Theme Arbitrary File Upload (2.7.3) CWE-434   High
WordPress Plugin PDW Media File Browser 'upload.php' Arbitrary File Upload (1.1) CWE-434  High
WordPress Plugin Peugeot Music Arbitrary File Upload (1.0) CWE-434   High
WordPress Plugin Photo Gallery by WD-Responsive Photo Gallery for WordPress Arbitrary File Upload (1.2.5) CVE-2014-9312  CWE-434  High
WordPress Plugin PhotoSmash Galleries Arbitrary File Upload (1.0.7) CWE-434  High
WordPress Plugin PHP Analytics Arbitrary File Upload (1.0.0.2) CWE-434   High
WordPress Plugin PHP Event Calendar for WordPress Arbitrary File Upload (1.6) CWE-434   High
WordPress Plugin PICA Photo Gallery 'picaPhotosResize.php' Arbitrary File Upload (1.0) CWE-434  High
WordPress Plugin Picturesurf Gallery 'upload.php' Arbitrary File Upload (1.2) CWE-434  High
WordPress Plugin PitchPrint Arbitrary File Upload (7.1.1) CWE-434  High
WordPress Plugin PitchPrint Arbitrary File Upload (7.2.1) CWE-434  High
WordPress Plugin Popular Posts TimThumb Arbitrary File Upload (2.1.4) CWE-434  High
WordPress Plugin Powerplay Gallery 'upload.php' Arbitrary File Upload (3.2) CWE-434  High
WordPress Plugin Power Zoomer Arbitrary File Upload (1.2) CWE-434   High
WordPress Plugin Product Catalog Arbitrary File Upload (3.1.1) CWE-434   High
WordPress Plugin Product Catalog Arbitrary File Upload (3.8.6) CWE-434  High
WordPress Plugin RBX Gallery 'uploader.php' Arbitrary File Upload (2.1) CVE-2012-3575  CWE-434  High
WordPress Plugin Really Easy Slider TimThumb Arbitrary File Upload (0.1) CVE-2011-4106  CWE-20  High
WordPress Plugin Real WYSIWYG 'insert_file.php' Arbitrary File Upload (0.0.2) CWE-434  High
WordPress Plugin Recip.ly 'uploadImage.php' Arbitrary File Upload (1.1.7) CWE-434  High
WordPress Plugin ReFlex Gallery 'php.php' Arbitrary File Upload (1.4.6) CWE-434   High
WordPress Plugin ReFlex Gallery Arbitrary File Upload (3.1.3) CVE-2015-4133  CWE-434   High
WordPress Plugin Rekt Slideshow TimThumb Arbitrary File Upload (1.0.5) CVE-2011-4106  CWE-20  High
WordPress Plugin Remote Upload Arbitrary File Upload (1.2.1) CWE-434  High
WordPress Plugin Rent-A-Car TimThumb Arbitrary File Upload (1.0) CVE-2011-4106  CWE-20  High
WordPress Plugin Resume Submissions & Job Postings Arbitrary File Upload (2.5.1) CWE-434  High
WordPress Plugin Resume Submissions & Job Postings Arbitrary File Upload (2.5.3) CWE-434  High
WordPress Plugin Rich Widget Arbitrary File Upload (0.2.4) CWE-434   High
WordPress Plugin Royal Gallery 'upload.php' Arbitrary File Upload (2.1) CWE-434  High
WordPress Plugin SB Uploader Arbitrary File Upload (3.2) CWE-20  High
WordPress Plugin SB Uploader Arbitrary File Upload (4.1) CWE-434   High
WordPress Plugin Seo Spy Arbitrary File Upload (2.6) CWE-434   High
WordPress Plugin SFBrowser 'sfbrowser.php' Arbitrary File Upload (1.4.5) CWE-434  High
WordPress Plugin Shopping Cart Multiple SQL Injection and Arbitrary File Upload Vulnerabilities (8.1.14) CWE-89  CWE-434  High
WordPress Plugin Showbiz Pro Responsive Teaser Arbitrary File Upload (1.7.1) CWE-434   High
WordPress Plugin Simple:Press Security Bypass and Arbitrary File Upload Vulnerabilities (4.1.2) CWE-264  CWE-434  High
WordPress Plugin Simple Ads Manager Arbitrary File Upload (2.5.94) CVE-2015-2825  CWE-434   High
WordPress Plugin Simple Dropbox Upload Arbitrary File Upload (1.8.8) CVE-2013-5963  CWE-434   High
WordPress Plugin Simple Slide Show TimThumb Arbitrary File Upload (1.0) CWE-434  High
WordPress Plugin Slider Revolution Responsive Arbitrary File Upload (3.0.95) CWE-434   High
WordPress Plugin Slideshow Gallery Arbitrary File Upload (1.4.6) CVE-2014-5460  CWE-20  High
WordPress Plugin Slideshow Pro 'upload.php' Arbitrary File Upload (2.1) CWE-434  High
WordPress Plugin Slideshow Pro Arbitrary File Upload (2.4) CWE-434   High
WordPress Plugin Smart Slideshow 'upload.php' Arbitrary File Upload (2.1) CWE-434  High
WordPress Plugin Smart Slideshow Arbitrary File Upload (2.4) CWE-434   High
WordPress Plugin Social Networking & E-commerce Arbitrary File Upload (0.0.32) CWE-434   High
WordPress Plugin SpamTask Arbitrary File Upload (1.3.6) CWE-434   High
WordPress Plugin Special Text Boxes Arbitrary File Upload (5.1.90) CWE-434  High
WordPress Plugin TDO Mini Forms Arbitrary File Upload (0.13.9) CWE-434  High
WordPress Plugin Templatic Tevolution Arbitrary File Upload (2.3.6) CWE-434   High
WordPress Plugin The Piecemaker 'php.php' Arbitrary File Upload (1.1) CWE-434  High
WordPress Plugin Top Quark Architecture 'script.php' Arbitrary File Upload (2.1.0) CWE-434  High
WordPress Plugin Ultimate Member-User Profile & Membership Arbitrary File Upload (1.0.83) CWE-434   High
WordPress Plugin Ultimate Member-User Profile & Membership Arbitrary File Upload (2.0.21) CWE-434   High
WordPress Plugin Uploader 'uploadify.php' Arbitrary File Upload (1.0.4) CWE-434  High
WordPress Plugin Uploader Cross-Site Scripting and Arbitrary File Upload Vulnerabilities (1.0.4) CVE-2013-2287  CVE-2013-2288  CWE-79  CWE-434  High
WordPress Plugin Uploadify Remote File Upload (1.0) CWE-20  High
WordPress Plugin User Avatar TimThumb Arbitrary File Upload (1.3.7) CVE-2011-4106  CWE-20  High
WordPress Plugin user files Arbitrary File Upload (2.4.2) CWE-434   High
WordPress Plugin User Meta 'uploader.php' Arbitrary File Upload (1.1.1) CWE-434  High
WordPress Plugin User Photo 'user-photo.php' Arbitrary File Upload (0.9.4) CVE-2013-1916   CWE-20  High
WordPress Plugin Users Ultra Membership Arbitrary File Upload (1.5.58) CWE-434   High
WordPress Plugin Vertical SlideShow 'upload.php' Arbitrary File Upload (2.1) CWE-434  High
WordPress Plugin Vertical SlideShow Arbitrary File Upload (2.3) CWE-434   High
WordPress Plugin Verve Meta Boxes TimThumb Arbitrary File Upload (1.2.8) CVE-2011-4106  CWE-20  High
WordPress Plugin VIDEO GALLERY 'upload1.php' Arbitrary File Upload (1.3) CWE-434  High
WordPress Plugin Video Gallery /w YouTube, Vimeo Arbitrary File Upload (8.48) CWE-434   High
WordPress Plugin VideoWhisper Video Conference Integration 'vw_upload.php' Arbitrary File Upload (4.51) CWE-434  High
WordPress Plugin VideoWhisper Video Conference Integration Arbitrary File Upload (4.91.8) CWE-434   High
WordPress Plugin VideoWhisper Video Presentation 'vw_upload.php' Arbitrary File Upload (3.17) CWE-434  High
WordPress Plugin VideoWhisper Video Presentation Arbitrary File Upload (3.31.17) CWE-434   High
WordPress Plugin VK Gallery TimThumb Arbitrary File Upload (1.1.0) CVE-2011-4106  CWE-20  High
WordPress Plugin Vmax Project Manager Arbitrary File Upload (1.1) CWE-434   High
WordPress Plugin vSlider Multi Image Slider for WordPress Arbitrary File Upload (4.1.2) CWE-434   High
WordPress Plugin Wallable-Social Networking Arbitrary File Upload (1.1) CWE-434   High
WordPress Plugin Webapp builder (Free mobile apps native iPhone iOS & Android Winphone mobile apps) Arbitrary File Upload (2.0) CVE-2017-1002002  CWE-434   High
WordPress Plugin Web Tripwire Arbitrary File Upload (0.1.1) CWE-434   High
WordPress Plugin Windows Desktop and iPhone Photo Uploader Arbitrary File Upload (1.8) CWE-434   High
WordPress Plugin WooCommerce Catalog Enquiry Arbitrary File Upload (3.0.0) CWE-434  High
WordPress Plugin WooCommerce Product Addons Arbitrary File Upload (1.1) CWE-434  High
WordPress Plugin Woocommerce Product Designer Arbitrary File Upload (3.0.3) CWE-434   High
WordPress Plugin Woopra Analytics Arbitrary File Upload (1.4.3.1) CVE-2009-4140  CWE-434  High
WordPress Plugin WordPress Backup and Migrate-BackupGuard Arbitrary File Upload (1.0.2) CWE-434   High
WordPress Plugin WordPress Book List Arbitrary File Upload (5.0.11) CWE-434   High
WordPress Plugin WordPress Download Manager Arbitrary File Upload (2.8.97) CWE-434   High
WordPress Plugin WordPress File Upload Arbitrary File Upload (3.4.0) CWE-434   High
WordPress Plugin WordPress File Upload Arbitrary File Upload (3.8.5) CWE-434  High
WordPress Plugin WordPress File Upload Cross-Site Request Forgery (2.4.1) CVE-2014-5199  CWE-352  High
WordPress Plugin WordPress File Upload Cross-Site Scripting (4.3.2) CVE-2018-9172  CWE-79  High
WordPress Plugin WordPress File Upload Cross-Site Scripting (4.3.3) CVE-2018-9844  CWE-79  High
WordPress Plugin WordPress File Upload Multiple Unspecified Vulnerabilities (3.10.0) High
WordPress Plugin WordPress File Upload Multiple Vulnerabilities (2.7.6) CWE-79  CWE-200  CWE-352  CWE-434  High
WordPress Plugin WordPress Mobile app Builder-Convert WordPress site to native mobile apps Arbitrary File Upload (1.05) CVE-2017-1002001  CWE-434   High
WordPress Plugin wordpress responsive thumbnail slider Arbitrary File Upload (1.0) CWE-434   High
WordPress Plugin Work The Flow File Upload Arbitrary File Upload (2.3.1) CWE-434  High
WordPress Plugin Work The Flow File Upload Arbitrary File Upload (2.5.2) CWE-434   High
WordPress Plugin Wp-FileManager 'ajaxfilemanager.php' Arbitrary File Upload (1.2) CVE-2008-0222  CWE-94  High
WordPress Plugin WP-Property-WordPress Powered Real Estate and Property Management Arbitrary File Upload (1.35.0) CWE-434  High
WordPress Plugin Wp2android-webapp native mobile app builder free (android, IOs, Winphone mobile App) Arbitrary File Upload (1.1.4) CVE-2017-1002003  CWE-434   High
WordPress Plugin WP Business Intelligence Lite Arbitrary File Upload (1.0.6) CWE-434  High
WordPress Plugin wpcu3er 'ajaxReq.php' Arbitrary File Upload (0.55) CWE-434  High
WordPress Plugin wpDataTables-Tables and Charts Manager for WordPress Arbitrary File Upload (1.5.3) CWE-94  High
WordPress Plugin wp Dreamwork Gallery 'upload.php' Arbitrary File Upload (2.1) CWE-434  High
WordPress Plugin wp Dreamwork Gallery Arbitrary File Upload (2.3) CWE-434   High
WordPress Plugin WP Easy Gallery 'add-gallery.php' Arbitrary File Upload (1.8) CWE-434  High
WordPress Plugin WP Editor Arbitrary File Upload (1.2.5.3) CWE-434   High
WordPress Plugin WP Front-End Repository Manager Arbitrary File Upload (1.1) CWE-434   High
WordPress Plugin WP GPX Maps 'wp-gpx-maps_admin_tracks.php' Arbitrary File Upload (1.1.22) CVE-2012-6649   CWE-434  High
WordPress Plugin WP Live Chat Support Pro Arbitrary File Upload (8.0.06) CVE-2018-12426  CWE-434   High
WordPress Plugin WP Marketplace-Complete Shopping Cart/eCommerce Solution 'uploadify.php' Arbitrary File Upload (1.6.1) CWE-434  High
WordPress Plugin WP Marketplace-Complete Shopping Cart/eCommerce Solution Arbitrary File Upload (1.2.1) CWE-434   High
WordPress Plugin WP Marketplace-Complete Shopping Cart/eCommerce Solution Arbitrary File Upload (2.4.1) CWE-434  High
WordPress Plugin WP Marketplace TimThumb Arbitrary File Upload (1.1.0) CVE-2011-4106  CWE-20  High
WordPress Plugin WP Mobile Detector Arbitrary File Upload (3.5) CWE-434   High
WordPress Plugin WPshop-eCommerce Arbitrary File Upload (1.3.9.5) CWE-434  High
WordPress Plugin wpShopGermany Free Arbitrary File Upload (4.0.10) CWE-434   High
WordPress Plugin WP Simple Cart Arbitrary File Upload (1.0.15) CWE-434   High
WordPress Plugin wpStoreCart 'upload.php' Arbitrary File Upload (2.5.29) CVE-2012-3576  CWE-434  High
WordPress Plugin wp superb Slideshow 'upload.php' Arbitrary File Upload (2.2) CWE-434  High
WordPress Plugin wp superb Slideshow Arbitrary File Upload (2.4) CWE-434   High
WordPress Plugin WP Symposium Arbitrary File Upload (14.11) CVE-2014-10021  CWE-434  High
WordPress Plugin WP Symposium Arbitrary File Upload Vulnerabilities (11.11.26) CVE-2011-5051  CWE-434   High
WordPress Plugin WPtouch Mobile Arbitrary File Upload (3.4.6) CWE-20  High
WordPress Plugin WP User Frontend Arbitrary File Upload (2.3.10) CWE-434   High
WordPress Plugin XData Toolkit Arbitrary File Upload (1.9) CWE-434  High
WordPress Plugin Xerte Online 'save.php' Arbitrary File Upload (0.32) CWE-434   High
WordPress Plugin YAS Slideshow Arbitrary File Upload (3.4) CWE-434   High
WordPress Plugin Zingiri Web Shop 'uploadfilexd.php' Arbitrary File Upload (2.4.3) CWE-434  High
WordPress Plugin ZoomSounds-WordPress Audio Player Arbitrary File Upload (2.0) CWE-434   High