CVE-2012-1010 in AllWebMenus plugininfo

Zusammenfassung

von MITRE

Unrestricted file upload vulnerability in actions.php in the AllWebMenus plugin before 1.1.8 for WordPress allows remote attackers to execute arbitrary PHP code by uploading a ZIP file containing a PHP file, then accessing it via a direct request to the file in an unspecified directory.

Be aware that VulDB is the high quality source for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Reservieren

07.02.2012

Veröffentlichung

07.02.2012

Moderieren

akzeptiert

Eintrag

VDB-60116

CPE

bereit

CWE

CWE-20 (bestätigt)

Exploit

Download

CVSS

7.5 (NVD)

EPSS

0.09521

KEV

nein

Aktivitäten

very low

Quellen

MITRE	https://www.cve.org/CVERecord?id=CVE-2012-1010
NVD	https://nvd.nist.gov/vuln/detail/CVE-2012-1010
CVE Details	https://www.cvedetails.com/cve/CVE-2012-1010/

◂ Zurück Übersicht Weiter ▸

Want to stay up to date on a daily basis?

Enable the mail alert feature now!