CVE-2014-5460
Wordpress SlideShow Gallery Authenticated File Upload
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
8Exploited in Wild
-Decision
Descriptions
Unrestricted file upload vulnerability in the Tribulant Slideshow Gallery plugin before 1.4.7 for WordPress allows remote authenticated users to execute arbitrary code by uploading a PHP file, then accessing it via a direct request to the file in wp-content/uploads/slideshow-gallery/.
Vulnerabilidad de la subida de ficheros sin restricciones en el plugin Tribulant Slideshow Gallery anterior a 1.4.7 para WordPress permite a usuarios remotos autenticados ejecutar código arbitrario mediante la subida de un fichero PHP, posteriormente accediendo a ello a través de una solicitud directa al fichero en wp-content/uploads/slideshow-gallery/.
The WordPress SlideShow Gallery plugin contains an authenticated file upload vulnerability. You can upload arbitrary files to the upload folder, because the plugin also uses it's own file upload mechanism instead of the WordPress API it's possible to upload any file type.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2014-08-26 CVE Reserved
- 2014-08-28 First Exploit
- 2014-08-29 CVE Published
- 2024-08-06 CVE Updated
- 2024-09-09 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
CWE
- CWE-20: Improper Input Validation
- CWE-434: Unrestricted Upload of File with Dangerous Type
CAPEC
References (12)
| URL | Tag | Source |
|---|---|---|
| http://secunia.com/advisories/60074 | Third Party Advisory | |
| http://www.securityfocus.com/archive/1/533281/100/0/threaded | Mailing List | |
| https://exchange.xforce.ibmcloud.com/vulnerabilities/95676 | Vdb Entry |
| URL | Date | SRC |
|---|---|---|
| https://wordpress.org/plugins/slideshow-gallery/changelog | 2018-10-09 |
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Tribulant Search vendor "Tribulant" | Tibulant Slideshow Gallery Search vendor "Tribulant" for product "Tibulant Slideshow Gallery" | <= 1.4.6 Search vendor "Tribulant" for product "Tibulant Slideshow Gallery" and version " <= 1.4.6" | wordpress |
Affected
| ||||||
| Tribulant Search vendor "Tribulant" | Tibulant Slideshow Gallery Search vendor "Tribulant" for product "Tibulant Slideshow Gallery" | 1.4 Search vendor "Tribulant" for product "Tibulant Slideshow Gallery" and version "1.4" | wordpress |
Affected
| ||||||
| Tribulant Search vendor "Tribulant" | Tibulant Slideshow Gallery Search vendor "Tribulant" for product "Tibulant Slideshow Gallery" | 1.4.1 Search vendor "Tribulant" for product "Tibulant Slideshow Gallery" and version "1.4.1" | wordpress |
Affected
| ||||||
| Tribulant Search vendor "Tribulant" | Tibulant Slideshow Gallery Search vendor "Tribulant" for product "Tibulant Slideshow Gallery" | 1.4.2 Search vendor "Tribulant" for product "Tibulant Slideshow Gallery" and version "1.4.2" | wordpress |
Affected
| ||||||
| Tribulant Search vendor "Tribulant" | Tibulant Slideshow Gallery Search vendor "Tribulant" for product "Tibulant Slideshow Gallery" | 1.4.3 Search vendor "Tribulant" for product "Tibulant Slideshow Gallery" and version "1.4.3" | wordpress |
Affected
| ||||||
| Tribulant Search vendor "Tribulant" | Tibulant Slideshow Gallery Search vendor "Tribulant" for product "Tibulant Slideshow Gallery" | 1.4.4 Search vendor "Tribulant" for product "Tibulant Slideshow Gallery" and version "1.4.4" | wordpress |
Affected
| ||||||
| Tribulant Search vendor "Tribulant" | Tibulant Slideshow Gallery Search vendor "Tribulant" for product "Tibulant Slideshow Gallery" | 1.4.5 Search vendor "Tribulant" for product "Tibulant Slideshow Gallery" and version "1.4.5" | wordpress |
Affected
| ||||||