QwikSec

Security Database

CVE

CWE

Training

CVE-2009-3890

Published: Nov 17, 2009

Modified: Sep 16, 2024

PUBLISHED

Description

Unrestricted file upload vulnerability in the wp_check_filetype function in wp-includes/functions.php in WordPress before 2.8.6, when a certain configuration of the mod_mime module in the Apache HTTP Server is enabled, allows remote authenticated users to execute arbitrary code by posting an attachment with a multiple-extension filename, and then accessing this attachment via a direct request to a wp-content/uploads/ pathname, as demonstrated by a .php.jpg filename.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

third-party-advisory

x_refsource_SECUNIA

[oss-security] 20091116 Re: CVE request: Wordpress 2.8.6

mailing-list

x_refsource_MLIST

20091111 WordPress <= 2.8.5 Unrestricted File Upload Arbitrary PHP Code Execution

mailing-list

x_refsource_FULLDISC

http://wordpress.org/development/2009/11/wordpress-2-8-6-security-release/

x_refsource_CONFIRM

20091112 Re: WordPress <= 2.8.5 Unrestricted File Upload Arbitrary PHP Code Execution

mailing-list

x_refsource_FULLDISC

[oss-security] 20091115 Re: CVE request: Wordpress 2.8.6

mailing-list

x_refsource_MLIST

http://core.trac.wordpress.org/ticket/11122

x_refsource_CONFIRM

vdb-entry

x_refsource_OSVDB

20091112 Re: WordPress <= 2.8.5 Unrestricted File Upload Arbitrary PHP Code Execution

mailing-list

x_refsource_FULLDISC

[oss-security] 20091115 CVE request: Wordpress 2.8.6

mailing-list

x_refsource_MLIST

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.