Description

wp-admin/options.php in WordPress MU before 1.3.2, and WordPress 2.3.2 and earlier, does not properly validate requests to update an option, which allows remote authenticated users with manage_options and upload_files capabilities to execute arbitrary code by uploading a PHP script and adding this script's pathname to active_plugins.

Remediation

References

CVE-2008-5695

Related Vulnerabilities

phpMyAdmin Deserialization of Untrusted Data Vulnerability (CVE-2016-6620)

WordPress Plugin Easy Digital Downloads-Simple eCommerce for Selling Digital Files Cross-Site Scripting (2.3.6)

IBM RTC Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2015-7449)

WordPress 4.4.x Multiple Vulnerabilities (4.4 - 4.4.29)

WordPress Plugin Cryptocurrency Widgets For Elementor Security Bypass (1.2.1)

Severity

High

Classification

CVE-2008-5695 CWE-20

Tags

Missing Update Known Vulnerabilities