Description

wp-admin/options.php in WordPress MU before 1.3.2, and WordPress 2.3.2 and earlier, does not properly validate requests to update an option, which allows remote authenticated users with manage_options and upload_files capabilities to execute arbitrary code by uploading a PHP script and adding this script's pathname to active_plugins.

Remediation

References

CVE-2008-5695

Related Vulnerabilities

XWiki Exposure of Resource to Wrong Sphere Vulnerability (CVE-2023-29208)

Drupal Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-0827)

WordPress Plugin LiveSig 'wp-root' Parameter Remote File Include (0.4)

MySQL CVE-2015-4830 Vulnerability (CVE-2015-4830)

WordPress Plugin Beautiful FAQ for WordPress-Everest FAQ Manager Lite includes Backdoor [Only if downloaded via the vendor website] (1.0.8)

Severity

High

Classification

CVE-2008-5695 CWE-20

Tags

Missing Update Known Vulnerabilities