1 results (0.002 seconds)

CVSS: 9.8EPSS: 1%CPEs: 1EXPL: 1

The ACF-Frontend-Display plugin through 2015-07-03 for WordPress has arbitrary file upload via an action=upload request to js/blueimp-jQuery-File-Upload-d45deb1/server/php/index.php. El plugin ACF-Frontend-Display hasta el 03-07-2015 para WordPress, presenta una carga arbitraria de archivos por medio de una petición action=upload en el archivo js/blueimp-jQuery-File-Upload-d45deb1/server/php/index.php. The ACF-Frontend-Display plugin through 2.0.6 for WordPress has arbitrary file upload via an action=upload request to js/blueimp-jQuery-File-Upload-d45deb1/server/php/index.php. • https://packetstormsecurity.com/files/132590 • CWE-434: Unrestricted Upload of File with Dangerous Type •