Imagely: >> Nextgen Gallery >> 2.0.78.1 Security Vulnerabilities
In post-new.php in the Photocrati NextGEN Gallery plugin 2.1.10 for WordPress, unrestricted file upload is available via the name parameter, if a file extension is changed from .jpg to .php.
CVSS Score
8.8
EPSS Score
0.05
Published
2017-09-12
Page 3