CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Ajax Upload For Gravity Forms Project: >> Ajax Upload For Gravity Forms Security Vulnerabilities

CVE-2014-4972

Unrestricted file upload vulnerability in the Gravity Upload Ajax plugin 1.1 and earlier for WordPress allows remote attackers to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file under wp-content/uploads/gravity_forms.

CVSS Score

9.8

EPSS Score

0.094

Published

2018-01-08

Page 1

Vulnerabilities

Vulnerable Software

Ajax Upload For Gravity Forms Project: >> Ajax Upload For Gravity Forms Security Vulnerabilities

Products

Pricing

Contact Us