Skip to main content

Reflex Gallery

1 CVEs product

Monthly

CVE-2015-4133 HIGH POC PATCH THREAT Act Now

Unrestricted file upload vulnerability in admin/scripts/FileUploader/php.php in the ReFlex Gallery plugin before 3.1.4 for WordPress allows remote attackers to execute arbitrary PHP code by uploading. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 75.2%.

WordPress PHP File Upload Reflex Gallery
NVD Exploit-DB
CVSS 2.0
7.5
EPSS
75.2%
Threat
5.3
EPSS 75% 5.3 CVSS 7.5
HIGH POC PATCH THREAT Act Now

Unrestricted file upload vulnerability in admin/scripts/FileUploader/php.php in the ReFlex Gallery plugin before 3.1.4 for WordPress allows remote attackers to execute arbitrary PHP code by uploading. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 75.2%.

WordPress PHP File Upload +1
NVD Exploit-DB

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy