Описание
Unrestricted file upload vulnerability in server/php/UploadHandler.php in the jQuery File Upload Plugin 6.4.4 for jQuery, as used in the Creative Solutions Creative Contact Form (formerly Sexy Contact Form) before 1.0.0 for WordPress and before 2.0.1 for Joomla!, allows remote attackers to execute arbitrary code by uploading a PHP file with an PHP extension, then accessing it via a direct request to the file in files/, as exploited in the wild in October 2014.
Ссылки
- Broken Link
- Broken Link
- Mailing ListThird Party Advisory
- Mailing ListThird Party Advisory
- Mailing ListThird Party Advisory
- Third Party Advisory
- ExploitThird Party AdvisoryVDB Entry
- ExploitThird Party AdvisoryVDB Entry
- Broken Link
- Broken Link
- Mailing ListThird Party Advisory
- Mailing ListThird Party Advisory
- Mailing ListThird Party Advisory
- Third Party Advisory
- ExploitThird Party AdvisoryVDB Entry
- ExploitThird Party AdvisoryVDB Entry
Уязвимые конфигурации
Конфигурация 1Версия до 1.0.0 (исключая)Версия до 2.0.1 (исключая)
Одно из
cpe:2.3:a:creative-solutions:creative_contact_form:*:*:*:*:*:wordpress:*:*
cpe:2.3:a:creative-solutions:creative_contact_form:*:*:*:*:*:joomla\!:*:*
cpe:2.3:a:jquery_file_upload_project:jquery_file_upload:6.4.4:*:*:*:*:*:*:*
EPSS
Процентиль: 100%
0.90252
Критический
9.8 Critical
CVSS3
7.5 High
CVSS2
Дефекты
CWE-434
Связанные уязвимости
github
больше 3 лет назад
jQuery File Upload Plugin Unrestricted file upload vulnerability
EPSS
Процентиль: 100%
0.90252
Критический
9.8 Critical
CVSS3
7.5 High
CVSS2
Дефекты
CWE-434