CVE-2015-1172 in Holding Patterninformation

Résumé (Anglaise)

Unrestricted file upload vulnerability in admin/upload-file.php in the Holding Pattern theme (aka holding_pattern) 0.6 and earlier for WordPress allows remote attackers to execute arbitrary PHP code by uploading a file with a PHP extension, then accessing it via a direct request to the file in an unspecified directory.

Réserver

17/01/2015

Divulgation

11/02/2015

Entrées

VulDB provides additional information and datapoints for this CVE:

ID	Vulnérabilité	CWE	Exp	Con	CVE
74158	Holding Pattern File Upload upload-file.php élévation de privilèges	434	Élevé	Non défini	CVE-2015-1172

Description

CPE

CWE

CVSS

Exploits

Histoire

Diff

Relier

Renseignements sur les menaces

API JSON

API XML

API CSV

◂ PrécédentAperçuSuivant ▸

Want to know what is going to be exploited?

We predict KEV entries!