Wordpress remote code execution in Form Manager Plugin


Description   A remote code execution has been found in Form Manager Plugin. It allows an attacker with an unprivileged account (including a self-registered account) to execute arbitrary commands on the host.
     
Default
configuration 		 
Profiles High Medium Low Internet
Action Block Block Block Block
Alarm Level Major Major Minor Minor
     
References   URL: http://appcheck-ng.com/remote-command-execution-in-wordpress-form-manager-plugin-cve-2015-7806/
     
Available since   ASQ v5.0.0
     
Protects   Wordpress Multiple Third Party Plugins Multiple Vulnerabilities
100 last CVE   CVE-2015-7806
CVE-2015-5308


 
 
 
 
 Risk level 
Moderate