CVE-2012-0934
PHP remote file inclusion vulnerability in ajax/savetag.php in the Theme Tuner plugin for WordPress before 0.8 allows remote attackers to execute arbitrary PHP code via a URL in the tt-abspath parameter.
Code Injection
Vendor | Product | Version |
---|---|---|
zingiri | theme_tuner_plugin | 𝑥 ≤ 0.7 |
zingiri | theme_tuner_plugin | 0.1 |
zingiri | theme_tuner_plugin | 0.2 |
zingiri | theme_tuner_plugin | 0.3 |
zingiri | theme_tuner_plugin | 0.4 |
zingiri | theme_tuner_plugin | 0.6 |
Common Weakness Enumeration