Vulnerabilities > Reflex Gallery Project > Reflex Gallery > 1.4.3
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2015-05-28 | CVE-2015-4133 | Unspecified vulnerability in Reflex Gallery Project Reflex Gallery Unrestricted file upload vulnerability in admin/scripts/FileUploader/php.php in the ReFlex Gallery plugin before 3.1.4 for WordPress allows remote attackers to execute arbitrary PHP code by uploading a file with a PHP extension, then accessing it via a direct request to the file in uploads/ directory. | 7.5 |