Insufficient File Upload Restrictions in wp-file-upload Plugin for WordPress

Insufficient File Upload Restrictions in wp-file-upload Plugin for WordPress

CVE-2015-9340 · MEDIUM Severity

AV:N/AC:L/AU:N/C:N/I:P/A:N

The wp-file-upload plugin before 3.0.0 for WordPress has insufficient restrictions on upload of php, js, pht, php3, php4, php5, phtml, htm, html, and htaccess files.

Learn more about our Wordpress Pen Testing.