Full title: WordPress SlideShow Gallery Authenticated File Upload Exploit 
Category: remote exploits
Platform: php
The WordPress SlideShow Gallery plugin contains an authenticated file upload vulnerability. You can upload arbitrary files to the upload folder, because the plugin also uses it's own file upload mechanism instead of the WordPress API it's possible to upload any file type.

# 0day.today @ http://0day.today/