The Social Photo Gallery plugin 1.0 for WordPress allows Remote Code Execution by creating an album and attaching a malicious PHP file in the cover photo album, because the file extension is not checked.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2019-11-18T15:21:09
Updated: 2024-08-05T00:19:41.149Z
Reserved: 2019-07-31T00:00:00
Link: CVE-2019-14467
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2019-11-18T16:15:11.760
Modified: 2020-08-24T17:37:01.140
Link: CVE-2019-14467
Redhat
No data.