what you don't know can hurt you
Home Files News &[SERVICES_TAB]About Contact Add New
Showing 1 - 3 of 3 RSS Feed

CVE-2014-5460

Status Candidate

Overview

Unrestricted file upload vulnerability in the Tribulant Slideshow Gallery plugin before 1.4.7 for WordPress allows remote authenticated users to execute arbitrary code by uploading a PHP file, then accessing it via a direct request to the file in wp-content/uploads/slideshow-gallery/.

Related Files

WordPress SlideShow Gallery Authenticated File Upload
Posted Apr 20, 2015
Authored by Jesus Ramirez Pichardo | Site metasploit.com

The WordPress SlideShow Gallery plugin contains an authenticated file upload vulnerability. You can upload arbitrary files to the upload folder, because the plugin also uses it's own file upload mechanism instead of the WordPress API it's possible to upload any file type.

tags | exploit, arbitrary, file upload
advisories | CVE-2014-5460
SHA-256 | 9a7da5312dab92d7b283154818127736540719c6ad6ac81ce02c41aa922cfeb6
WordPress Slideshow Gallery 1.4.6 Shell Upload
Posted Sep 16, 2014
Authored by Claudio Viviani, Jesus Ramirez Pichardo

WordPress Slideshow Gallery plugin version 1.4.6 shell upload exploit.

tags | exploit, shell
advisories | CVE-2014-5460
SHA-256 | c99c433d6dd82c7b0776b88fdc07ae76f1b02ea1f79fc372b706050fe5f7185c
WordPress Slideshow Gallery 1.4.6 Shell Upload
Posted Aug 31, 2014
Authored by Jesus Ramirez Pichardo

WordPress Slideshow Gallery plugin version 1.4.6 suffers from a remote shell upload vulnerability.

tags | exploit, remote, shell
advisories | CVE-2014-5460
SHA-256 | da1173acbf60ac4072b91b8343a4327a4c0c947abd480e34616ebb2f1ee3f2e3
Page 1 of 1
Back1Next

File Archive:

February 2024

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Feb 1st
    16 Files
  • 2
    Feb 2nd
    19 Files
  • 3
    Feb 3rd
    0 Files
  • 4
    Feb 4th
    0 Files
  • 5
    Feb 5th
    24 Files
  • 6
    Feb 6th
    2 Files
  • 7
    Feb 7th
    10 Files
  • 8
    Feb 8th
    25 Files
  • 9
    Feb 9th
    37 Files
  • 10
    Feb 10th
    0 Files
  • 11
    Feb 11th
    0 Files
  • 12
    Feb 12th
    17 Files
  • 13
    Feb 13th
    20 Files
  • 14
    Feb 14th
    25 Files
  • 15
    Feb 15th
    15 Files
  • 16
    Feb 16th
    6 Files
  • 17
    Feb 17th
    0 Files
  • 18
    Feb 18th
    0 Files
  • 19
    Feb 19th
    35 Files
  • 20
    Feb 20th
    25 Files
  • 21
    Feb 21st
    0 Files
  • 22
    Feb 22nd
    0 Files
  • 23
    Feb 23rd
    0 Files
  • 24
    Feb 24th
    0 Files
  • 25
    Feb 25th
    0 Files
  • 26
    Feb 26th
    0 Files
  • 27
    Feb 27th
    0 Files
  • 28
    Feb 28th
    0 Files
  • 29
    Feb 29th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2022 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close