Tbelmans : Security Vulnerabilities, CVEs, Published In 2012
Unrestricted file upload vulnerability in includes/doajaxfileupload.php in the MM Forms Community plugin 2.2.5 and 2.2.6 for WordPress allows remote attackers to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in upload/temp.
Max CVSS
7.5
EPSS Score
27.10%
Published
2012-06-16
Updated
2017-08-29
1 vulnerabilities found