MidnightBSD

Advisories for kylegilman

CVE-2012-1785 HIGH

kg_callffmpeg.php in the Video Embed & Thumbnail Generator plugin before 2.0 for WordPress allows remote attackers to execute arbitrary commands via unspecified vectors.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-20,

Products Affected

Vendor Product Version
kylegilman video_embed_&_thumbnail_generator 1.0.3
kylegilman video_embed_&_thumbnail_generator *
kylegilman video_embed_&_thumbnail_generator 1.0.1
kylegilman video_embed_&_thumbnail_generator 1.0.4
kylegilman video_embed_&_thumbnail_generator 0.2
kylegilman video_embed_&_thumbnail_generator 1.0.2
kylegilman video_embed_&_thumbnail_generator 1.0.5
kylegilman video_embed_&_thumbnail_generator 0.2.1
kylegilman video_embed_&_thumbnail_generator 1.0
CVE-2012-1786 MEDIUM

The Media Upload form in the Video Embed & Thumbnail Generator plugin before 2.0 for WordPress allows remote attackers to obtain the installation path via unknown vectors.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
kylegilman video_embed_&_thumbnail_generator 1.0.3
kylegilman video_embed_&_thumbnail_generator *
kylegilman video_embed_&_thumbnail_generator 1.0.1
kylegilman video_embed_&_thumbnail_generator 1.0.4
kylegilman video_embed_&_thumbnail_generator 0.2
kylegilman video_embed_&_thumbnail_generator 1.0.2
kylegilman video_embed_&_thumbnail_generator 1.0.5
kylegilman video_embed_&_thumbnail_generator 0.2.1
kylegilman video_embed_&_thumbnail_generator 1.0