CVE-2015-9499 – Showbiz Pro Responsive Teaser WordPress Plugin <= 1.7.1 - Arbitrary File Upload

https://notcve.org/view.php?id=CVE-2015-9499

The Showbiz Pro plugin through 1.7.1 for WordPress has PHP code execution by uploading a .php file within a ZIP archive. El plugin Showbiz Pro versiones hasta 1.7.1 para WordPress, presenta una ejecución de código PHP al cargar un archivo .php dentro de un archivo ZIP. • https://github.com/espreto/wpsploit/blob/master/modules/exploits/unix/webapp/wp_showbiz_file_upload.rb https://wpvulndb.com/vulnerabilities/7955 https://www.exploit-db.com/exploits/35385 • CWE-434: Unrestricted Upload of File with Dangerous Type •