WordPress User Photo Component - Remote File Upload

user-photo

Software
User Photo
Versions
0.9.4
Disclosure date
2011-02-17
CVE
CVE-2013-1916
References
Credits
Classification
Arbitrary File Upload
OWASP Top 10

Are your websites subject to this vulnerability?

Details

Remote file upload vulnerability was found in this plugin. When photo is uploaded, it is validated only partially. There is a possibility to upload a backdoor on the server hosting WordPress and it can be executed independently from that if the photo has not been yet approved. Also, there is a cross-site scripting vulnerability .

Solution

This vulnerability can be limited by hardening of the web server.

Found a vulnerability that puts your sites at risk?

Found a vulnerability? Help us secure the web and join our community of ethical hackers.

Are you the developer of this software? Hire our researchers for a thorough security audit.