The Imagements WordPress plugin up to and including 1.2.5 allows images to be uploaded in comments, however only checks for the Content-Type in the request to forbid dangerous files. This allows unauthenticated malicious users to upload arbitrary files by using a valid image Content-Type along with a PHP filename and code, leading to RCE.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|