WordPress Plugin Kish Guest Posting uploadify.php Arbitrary File Upload - CVE-2012-5318 - Vulnerability Database

WordPress Plugin Kish Guest Posting uploadify.php Arbitrary File Upload - CVE-2012-5318

High
Reference: CVE-2012-5318
Title: WordPress Plugin Kish Guest Posting uploadify.php Arbitrary File Upload
Overview:

WordPress Plugin Kish Guest Posting is prone to a vulnerability that lets attackers upload arbitrary files because the application fails to adequately sanitize user-supplied input. An attacker may leverage this issue to upload arbitrary files to the affected computer this can result in arbitrary code execution within the context of the vulnerable application. WordPress Plugin Kish Guest Posting version 1.2 is vulnerable other versions may also be affected.