Description
The file upload functionality in WordPress 3.1 before 3.1.3 and 3.2 before Beta 2, when running "on hosts with dangerous security settings," has unknown impact and attack vectors, possibly related to dangerous filenames.
Remediation
References
Related Vulnerabilities
WordPress 5.1.x Multiple Vulnerabilities (5.1 - 5.1.8)
PHP Integer Overflow or Wraparound Vulnerability (CVE-2016-5769)
Django Permissions, Privileges, and Access Controls Vulnerability (CVE-2016-9014)
WordPress 2.5 Cookie Integrity Protection Unauthorized Access Vulnerability (0.6.2 - 2.5)
WordPress Plugin WP Customer Reviews Cross-Site Scripting (3.5.5)