Description
The file upload functionality in WordPress 3.1 before 3.1.3 and 3.2 before Beta 2, when running "on hosts with dangerous security settings," has unknown impact and attack vectors, possibly related to dangerous filenames.
Remediation
References
Related Vulnerabilities
WordPress Plugin WP Customer Reviews Unspecified Vulnerability (3.0.7)
Drupal Core 6.x Multiple Vulnerabilities (6.0 - 6.17)
Drupal Core 7.x Multiple Vulnerabilities (7.0)
Drupal Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2007-6752)
WordPress Plugin SEO Ultimate Cross-Site Scripting (7.6.5.2)