Description
Unrestricted file upload vulnerability in WordPress 2.5.1 and earlier might allow remote authenticated administrators to upload and execute arbitrary PHP files via the Upload section in the Write Tabs area of the dashboard.
Remediation
References
Related Vulnerabilities
MySQL CVE-2012-0496 Vulnerability (CVE-2012-0496)
WordPress Plugin HubSpot All-In-One Marketing-Forms, Popups, Live Chat Cross-Site Scripting (7.5.5)
Nginx Resource Management Errors Vulnerability (CVE-2016-0747)
PostgreSQL Improper Validation of Specified Type of Input Vulnerability (CVE-2026-2003)
Apache Traffic Server CVE-2024-31309 Vulnerability (CVE-2024-31309)