Skip to main content

N Media File Uploader

1 CVEs product

Monthly

CVE-2014-5324 MEDIUM This Month

Unrestricted file upload vulnerability in the N-Media file uploader plugin before 3.4 for WordPress allows remote authenticated users to execute arbitrary PHP code by leveraging Author privileges to. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

WordPress Code Injection File Upload PHP RCE +1
NVD
CVSS 2.0
6.5
EPSS
0.5%
EPSS 0% CVSS 6.5
MEDIUM This Month

Unrestricted file upload vulnerability in the N-Media file uploader plugin before 3.4 for WordPress allows remote authenticated users to execute arbitrary PHP code by leveraging Author privileges to. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

WordPress Code Injection File Upload +3
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy