oss-sec mailing list archives

CVE request: WordPress plugin wp-gpx-maps wp-gpx-maps_admin_tracks.php Improper Admin Verification File Upload PHP Code Execution

From: Henri Salo <henri () nerv fi>
Date: Mon, 23 Jun 2014 17:13:27 +0300

Can I get 2012 CVE identifier for Improper Admin Verification File Upload PHP
Code Execution in WordPress plugin wp-gpx-maps, thanks. Changelog does not have
fixed in version number listed.

OSVDB: http://osvdb.org/82900
Fix in 1.1.23 version: https://plugins.trac.wordpress.org/changeset/556274/wp-gpx-maps
Plugin page: http://wordpress.org/plugins/wp-gpx-maps/

---
Henri Salo

Attachment: signature.asc
Description: Digital signature

Current thread:

CVE request: WordPress plugin wp-gpx-maps wp-gpx-maps_admin_tracks.php Improper Admin Verification File Upload PHP Code Execution Henri Salo (Jun 23)
- Re: CVE request: WordPress plugin wp-gpx-maps wp-gpx-maps_admin_tracks.php Improper Admin Verification File Upload PHP Code Execution cve-assign (Jun 25)