Security Advisory

CVE-2014-5324

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2014-09-26 10:00:00

Last updated 2024-08-06 11:41:48

Assigner jpcert

State PUBLISHED

Description

Unrestricted file upload vulnerability in the N-Media file uploader plugin before 3.4 for WordPress allows remote authenticated users to execute arbitrary PHP code by leveraging Author privileges to store a file.

← Browse all CVEs View on cve.org ↗