Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Unrestricted file upload vulnerability in upload.php in the Giulio Ganci Wp Downloads Manager module 0.2 for WordPress allows remote attackers to execute arbitrary code by uploading a file with an executable extension via the upfile parameter, then accessing it via a direct request to the file in wp-content/plugins/downloads-manager/upload/.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
WordPress Wp Downloads Manager Module 'upload.php' 任意文件上传漏洞
Vulnerability Description
WordPress是一种使用PHP语言开发的博客平台,用户可以在支持PHP和MySQL 数据库的服务器上架设自己的网志。 WordPress Giulio Ganci Wp Downloads Manager模块0.2版本存在未限制文件上传漏洞。远程攻击者可以借助upfile参数先上传一个文件执行任意代码。
CVSS Information
N/A
Vulnerability Type
N/A