The crelly-slider plugin prior to 1.3.5 for WordPress has arbitrary file upload via a PHP file inside a ZIP archive to wp_ajax_crellyslider_importSlider.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
crelly slider project crelly slider |