Description
WordPress before 4.5.3 allows remote attackers to bypass the sanitize_file_name protection mechanism via unspecified vectors.
Remediation
References
Related Vulnerabilities
Jboss EAP Incomplete List of Disallowed Inputs Vulnerability (CVE-2018-5968)
MySQL CVE-2014-0437 Vulnerability (CVE-2014-0437)
phpMyAdmin Improper Input Validation Vulnerability (CVE-2016-2562)
WordPress Plugin Import all XML, CSV & TXT into WordPress Multiple Vulnerabilities (6.5.7)
WordPress Plugin ShareThis:Free Sharing Buttons and Tools Cross-Site Request Forgery (7.0.5)