CVE-2015-2825 in Simple Ads Manager Plugininfo

Summary

Unrestricted file upload vulnerability in sam-ajax-admin.php in the Simple Ads Manager plugin before 2.5.96 for WordPress allows remote attackers to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in the directory specified by the path parameter.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

Reservation

04/01/2015

Disclosure

04/21/2015

Status

Confirmed

Entries

VulDB provides additional information and datapoints for this CVE:

ID	Vulnerability	CWE	Exp	Cou	CVE
75037	Simple Ads Manager Plugin sam-ajax-admin.php unrestricted upload	434	High	Official fix	CVE-2015-2825

Description

CPE

CWE

CVSS

Exploits

History

Diff

Relate

Threat Intelligence

API JSON

API XML

API CSV

Sources

MITRE
NVD
CVE Details

◂ PreviousOverviewNext ▸

Do you know our Splunk app?

Download it now for free!