Quantcast
Channel: Exabytes Security Portal » File Inclusion
Browsing latest articles
Browse All 44 View Live

WordPress Resume Submissions & Job Postings Plugin Arbitrary File Upload

Application: WordPress Affected Version: version 2.5.1 and other versions. Vendor’s URL: Resume Submissions & Job Postings Plugin Bug Type: File Upload Risk Level: Critical Solution: No official...

View Article



WordPress Nmedia Users File Uploader Plugin Arbitrary File Upload

Application: WordPress Affected Version: version 1.8 and other versions. Vendor’s URL: Nmedia Users File Uploader Plugin Bug Type: File Upload Risk Level: Critical Solution: Upgrade to version 2.0.

View Article

WordPress Cimy User Extra Fields Plugin Arbitrary File Upload

Application: WordPress Affected Version: version 2.3.7 and other versions. Vendor’s URL: Cimy User Extra Fields Plugin Bug Type: File Upload Risk Level: Critical Solution: No official solution is...

View Article

Joomla! En Masse Component Remote File Inclusion

Application: Joomla! Affected Version: versions prior to 3.1.3. Vendor’s URL: En Masse Component Bug Type: File Inclusion Risk Level: Critical Solution: Update to version 3.1.3.

View Article

WordPress Crayon Syntax Highlighter Plugin “wp_load” Remote File Inclusion...

Application: WordPress Affected Version: version 1.12.1 and prior versions. Vendor’s URL: Crayon Syntax Highlighter Plugin Bug Type: File Inclusion Risk Level: Critical Solution: Update to version 1.13.

View Article


WordPress Advanced Custom Fields Plugin “acf_abspath” Remote File Inclusion

Application: WordPress Affected Version: version 3.5.1 and prior versions. Vendor’s URL: Advanced Custom Fields Plugin Bug Type: File Inclusion Risk Level: Critical Solution: Update to version 3.5.2.

View Article

WordPress Floating Social Media Links Plugin “wpp” Remote File Inclusion

Application: WordPress Affected Version: version 1.4.2 and prior versions. Vendor’s URL: Floating Social Media Links Plugin Bug Type: File Inclusion Risk Level: Critical Solution: Update to version...

View Article

WordPress Xerte Online Plugin Arbitrary File Upload

Application: WordPress Affected Version: version 0.32 and other versions. Vendor’s URL: Xerte Online Plugin Bug Type: File Upload Risk Level: Critical Solution: No official solution is currently...

View Article


WordPress Google Doc Embedder Plugin Arbitrary File Disclosure

Application: WordPress Affected Version: version 2.4.6 and other versions. Vendor’s URL: Google Doc Embedder Plugin Bug Type: File Disclosure Risk Level: Critical Solution: Update to version 2.5.4.

View Article


WordPress WPScientist Multiple Themes Arbitrary File Upload

Application: WordPress Affected Version: * Lightspeed version 1.1.2 * Eptonic version 1.4.3 * Nuance version 1.2.3 Vendor’s URL: WPScientist Multiple Themes * Lightspeed version 1.1.2 * Eptonic version...

View Article

WordPress Browser Rejector Plugin “wppath” Remote File Inclusion

Application: WordPress Affected Version: version 2.10 and prior versions. Vendor’s URL: Browser Rejector Plugin Bug Type: File Inclusion Risk Level: Critical Solution: Update to version 2.11.

View Article

WordPress Zingiri Forum Plugin “url” Arbitrary File Disclosure

Application: WordPress Affected Version: version 1.4.2 and other versions. Vendor’s URL: Zingiri Forum Plugin Bug Type: File Disclosure Risk Level: Critical Solution: Update to version 1.4.4.

View Article

WordPress ReFlex Gallery Plugin Arbitrary File Upload

Application: WordPress Affected Version: version 1.4 and other versions Vendor’s URL: ReFlex Gallery Plugin Bug Type: File Upload Risk Level: Critical Solution: No official solution is currently...

View Article


WordPress Gallery Plugin “load” Remote File Inclusion Vulnerability

Application: WordPress Affected Version: version 1.4 and other versions. Vendor’s URL: Gallery Plugin Bug Type: Critical Risk Level: File Inclusion Solution: No official solution is currently available.

View Article

WordPress WP ecommerce Shop Styling Plugin “dompdf” Remote File Inclusion...

Application: WordPress Affected Version: version 1.7.2 and other versions. Vendor’s URL: WP ecommerce Shop Styling Plugin Bug Type: File Inclusion Risk Level: Critical Solution: Update to version 1.8.

View Article


WordPress Uploader Plugin Cross-Site Scripting and Arbitrary File Upload...

Application: WordPress Affected Version: version 1.0.4 and other versions. Vendor’s URL: Uploader Plugin Bug Type: Cross-Site Scripting & File Upload Risk Level: Critical Solution: No official...

View Article

YaBB “guestlanguage” Cookie Local File Inclusion

Application: YaBB Affected Version: version 2.5.2. Vendor’s URL: YaBB Bug Type: File Inclusion Risk Level: Critical Solution: Fixed in the SVN repository.

View Article


WordPress Export To Text Plugin “download” Remote File Inclusion

Application: WordPress Affected Version: version 2.2 and prior versions. Vendor’s URL: Export To Text Plugin Bug Type: File Inclusion Risk Level: Critical Solution: Update to version 2.3.

View Article

Joomla! Arbitrary File Upload

Application: Joomla! Affected Version: version 3.1.4 and versions prior to 2.5.14 and 3.1.5. Vendor’s URL: Joomla! Bug Type: File Upload Risk Level: Critical Solution: Update to version 2.5.14 or 3.1.5.

View Article

SocialEngine Timeline Plugin Arbitrary File Upload

Application: SocialEngine Affected Version: version 4.2.5p9 and other versions. Vendor’s URL: Timeline Plugin Bug Type: File Upload Risk Level: Critical Solution: Update to version 4.6.0.

View Article

AspxCommerce Logo Module Arbitrary File Upload

Application: AspxCommerce Affected Version: version 2.0 and other versions. Vendor’s URL: Logo Module Bug Type: File Upload Risk Level: Critical Solution: No official solution is currently available.

View Article


WordPress Simple Dropbox Upload Plugin Arbitrary File Upload

Application: WordPress Affected Version: version 1.8.8 and other versions. Vendor’s URL: Simple Dropbox Upload Plugin Bug Type: File Upload Risk Level: Critical Solution: No official solution is...

View Article


WordPress Complete Gallery Manager Plugin Arbitrary File Upload

Application: WordPress Affected Version: version 3.3.3 and other versions. Vendor’s URL: Complete Gallery Manager Plugin Bug Type: File Upload Risk Level: Critical Solution: No official solution is...

View Article

WordPress This Way Theme Arbitrary File Upload

Application: WordPress Affected Version: - Vendor’s URL: This Way Theme Bug Type: File Upload Risk Level: Critical Solution: No official solution is currently available.

View Article

WordPress OptimizePress Plugin Arbitrary File Upload

Application: WordPress Affected Version: versions prior to 1.6. Vendor’s URL: OptimizePress Plugin Bug Type: File Upload Risk Level: Critical Solution: Update to version 1.6.

View Article


Joomla! PROJOOM Smart Flash Header Component Arbitrary File Upload

Application: Joomla! Affected Version: versions prior to 3.0.3. Vendor’s URL: PROJOOM Smart Flash Header Component Bug Type: File Upload Risk Level: Critical Solution: Update to version 3.0.3.

View Article

WordPress Kiddo Theme “uploadify.php” Arbitrary File Upload

Application: WordPress Affected Version: Vendor’s URL: Kiddo Theme Bug Type: File Upload Risk Level: Critical Solution: No official solution is currently available.

View Article

WordPress The Cotton Theme Arbitrary File Upload

Application: WordPress Affected Version: version 1.1.4 and other versions. Vendor’s URL: The Cotton Theme Bug Type: File Upload Risk Level: Critical Solution: No official solution is currently available.

View Article

WordPress Business Intelligence Lite Plugin Arbitrary File Upload

Application: WordPress Affected Version: version 1.0.6 and other versions. Vendor’s URL: Business Intelligence Lite Plugin Bug Type: File Upload Risk Level: Critical Solution: Update to version 1.1.

View Article



WordPress Work The Flow File Upload Plugin Arbitrary File Upload

Application: WordPress Affected Version: version 1.2.2 and other versions. Vendor’s URL: Work The Flow File Upload Plugin Bug Type: File Upload Risk Level: Critical Solution: No official solution is...

View Article
Browsing latest articles
Browse All 44 View Live




Latest Images