CVE-2015-1376
28.01.2015, 11:59
pixabay-images.php in the Pixabay Images plugin before 2.4 for WordPress does not validate hostnames, which allows remote authenticated users to write to arbitrary files via an upload URL with a host other than pixabay.com.Enginsight
Vendor | Product | Version |
---|---|---|
pixabay_images_project | pixabay_images | 𝑥 ≤ 2.3 |
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References