CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Likno: >> Allwebmenus Plugin >> 1.0.20 Security Vulnerabilities

CVE-2012-1010

Unrestricted file upload vulnerability in actions.php in the AllWebMenus plugin before 1.1.8 for WordPress allows remote attackers to execute arbitrary PHP code by uploading a ZIP file containing a PHP file, then accessing it via a direct request to the file in an unspecified directory.

CVSS Score

7.5

EPSS Score

0.138

Published

2012-02-07

Page 1

Vulnerabilities

Vulnerable Software

Likno: >> Allwebmenus Plugin >> 1.0.20 Security Vulnerabilities

Products

Pricing

Contact Us