📦

tibulant_slideshow_gallery

Vendor: tribulant

Login to add this product to WatchStack
Actively Exploited 0 CISA KEV List
PoC / Exploits 1 Code Available
Total RCEs 1 Remote Access
Total CVEs 4 Total Indexed
Avg. EPSS 70.89% Exploit Prob.
Latest CVE CVE-2014-5460 Sep 11

Security Vulnerability Index

Page 1 / 1
6.5 CVSS
CVE-2014-5460
RCE Exploit Found

Unrestricted file upload vulnerability in the Tribulant Slideshow Gallery plugin before 1.4.7 for WordPress allows remote authenticated users to execute arbitrary code by uploading a PHP file, then accessing it via a direct request to the file in wp-content/uploads/slideshow-gallery/.

EPSS: 70.89%