supernothing has discovered a vulnerability in 1 Flash Gallery plugin for WordPress, which can be exploited by malicious people to compromise a vulnerable system.
The vulnerability is caused due to the wp-content/plugins/1-flash-gallery/upload.php script (when "action" is set to "uploadify" and "fileext" is set to e.g. "php") improperly verifying uploaded files. This can be exploited to execute arbitrary PHP code by uploading a PHP file.
The vulnerability is confirmed in version 1.5.6. Prior versions may also be affected.
