Vulnerabilities protected by our Malicious File Upload (PHP) firewall rule

458,932
Attacks Blocked in Past 24 Hours

Showing 261-280 of 458 Vulnerabilities

Title CVE ID CVSS Vector Date
Contus Video Gallery <= 1.3 - Arbitrary File Upload 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H June 12, 2012
FoxyPress <= 0.4.2.1 - Arbitrary File Upload 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H June 12, 2012
Woocommerce Wordpress Auctions <= 2.0.1.3 - Arbitrary File Upload 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H June 12, 2012
HD FLV Player <= 1.7 - Arbitrary File Upload CVE-2012-10011 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H June 12, 2012
WP GPX Maps < 1.1.23 - Arbitrary File Upload CVE-2012-6649 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H June 11, 2012
Top Quark Architecture Plugin < 2.1.1 - Arbitrary File Upload 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H June 11, 2012
Hungred Post Thumbnail <= 2.1.9 - Arbitrary File Upload 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H June 8, 2012
RBX Gallery < 3.1 - Arbitrary File Upload CVE-2012-3575 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H June 8, 2012
Picturesurf Gallery <= 1.2 - Arbitrary File Upload 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H June 8, 2012
Omni Secure Files <= 0.1.13 - Arbitrary File Upload 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H June 7, 2012
FCChat Widget < 2.2.13.7 - Arbitrary File Upload CVE-2012-3578 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H June 6, 2012
MM Forms Community <= 2.2.6 - Arbitrary File Upload CVE-2012-3574 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H June 6, 2012
HTML5 AV Manager <= 0.2.7 - Arbitrary File Upload 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H June 5, 2012
WP Property <= 1.35.0 - Remote File Upload 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H June 5, 2012
Nmedia WordPress Member Conversation < 1.4 - Arbitrary File Upload CVE-2012-3577 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H June 5, 2012
Smart Slideshow <= 2.4 - Arbitrary File Upload 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H June 1, 2012
3D Flick Slideshow < 2.2 - Arbitrary File Upload 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H June 1, 2012
Homepage SlideShow Plugin < 2.2 - Arbitrary File Upload 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H June 1, 2012
Asset Manager <= 0.3 - Arbitrary File Upload 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H May 26, 2012
WP Marketplace – Complete Shopping Cart / eCommerce Solution <= 1.2.1 - Arbitrary File Upload 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H April 8, 2012

Did you know Wordfence Intelligence provides free personal and commercial API access to our comprehensive WordPress vulnerability database, along with a free webhook integration to stay on top of the latest vulnerabilities added and updated in the database? Get started today!

Learn more

Want to get notified of the latest vulnerabilities that may affect your WordPress site?
Install Wordfence on your site today to get notified immediately if your site is affected by a vulnerability that has been added to our database.

Get Wordfence

The Wordfence Intelligence WordPress vulnerability database is completely free to access and query via API. Please review the documentation on how to access and consume the vulnerability data via API.

Documentation