vendor:
wp-imagezoom
by:
T3N38R15
6.5
CVSS
MEDIUM
Remote Image Upload
434
CWE
Product Name: wp-imagezoom
Affected Version From: 1.1.2000
Affected Version To: 1.1.2000
Patch Exists: NO
Related CWE: N/A
CPE: a:wordpress:wordpress:1.1.0
Metasploit:
N/A
Other Scripts:
N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References:
N/A
Nuclei Metadata: N/A
Platforms Tested: Windows, Linux
2015
wp-imagezoom Remote Image Upload
The affected file is the div_img.php it allowed anybody to upload jpg files. It also support a FPD and we can also delete entry's with http://domain.com/wp-content/plugins/wp-imagezoom/div_img.php?cmd=. Proof of concept is provided.
Mitigation:
Restrict access to the div_img.php file and ensure that only authorized users can upload files.