|
Description
|
|
(#Several file upload vulnerabilities have been identified in themes for WordPress.#A remote attacker could exploit them via a specially crafted POST request in order to upload an arbitrary file and potentially take control over the web site.##These vulnerabilities are located in#- Bordeaux: the "upload-handler.php" script file##- Neosense: the "qquploader" ajax file which does not verify user authorization.##Proofs of concept are available.)
|
|
|
|
|
|
Vulnerable Products
|
|
Vulnerable Software:
WordPress (WordPress) -
|
|
|
|
|
|
Solution
|
|
Version 1.8 of Neosonse plugin fixes the vulnerability affecting it.
|
|
|
|
|
|
CVE
|
|
|
|
|
|
|
|
References
|
|
- cxsecurity : Wordpress pulgin bordeaux theme upload shell Vulnerability
https://cxsecurity.com/issue/WLB-2016090131
- Full Disclosure: Unrestricted Upload/RCE in Neosense theme for WordPress
http://seclists.org/fulldisclosure/2016/Sep/48
|
|
|
|
|
|
Vulnerability Manager Detection
|
|
No
|
|
|
|
|
|
IPS Protection
|
|
|
|
|
|
|
