NuytsTech Security

CVE-2014-5014

by ·

The WordPress Flash Uploader plugin before 3.1.3 for WordPress allows remote attackers to execute arbitrary commands via vectors related to invalid characters in image_magic_path.

Date published : 2018-04-25

https://wordpress.org/plugins/wordpress-flash-uploader/changelog/

https://wordpress.org/support/topic/vulnerability-discovered-2/

Tags: