Vulnerabilities

CVE-2015-6967

by Fred · 16/09/2015

Unrestricted file upload vulnerability in the My Image plugin in Nibbleblog before 4.0.5 allows remote administrators to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in content/private/plugins/my_image/image.php.

Date published : 2015-09-16

http://blog.nibbleblog.com/post/nibbleblog-v4-0-5/

http://seclists.org/fulldisclosure/2015/Sep/5

Similar

Tags: Cybersecurity Alert