MidnightBSD

Advisories for alanft

CVE-2012-1205 HIGH

PHP remote file inclusion vulnerability in relocate-upload.php in Relocate Upload plugin before 0.20 for WordPress allows remote attackers to execute arbitrary PHP code via a URL in the abspath parameter.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-94,

Products Affected

Vendor Product Version
alanft relocate-upload 0.11
alanft relocate-upload 0.10
alanft relocate-upload *