Wordpress SP Projects and Document Manager plugin arbitrary code execution
Description
Clients can upload PHP files and execute them via a GET request to their specific location in the default upload path
Default
configuration
Profiles
High
Medium
Low
Internet
Action
Block
Block
Block
Block
Alarm Level
Major
Major
Major
Minor
References
URL:
http://seclists.org/bugtraq/2016/Mar/39
Available since
ASQ v5.0.0
Protects
Wordpress Multiple Third Party Plugins Multiple Vulnerabilities
100 last CVE
Risk level
High
