Application: WordPress
Affected Version: version 3.0.1 and other versions.
Vendor’s URL: Google Maps Via Store Locator Plus Plugin
Bug Type: SQL Injection & Path Disclosure
Risk Level: Critical

Solution:
Restrict access to the wp-content/plugins/store-locator-le/core/load_wp_config.php file (e.g. via .htaccess). Edit the source code to ensure that input is properly sanitised.

Content Management, Information Disclosure, SQL Injection

Application: WordPress
Affected Version: version 0.2.7 and other versions.
Vendor’s URL: HTML5 AV Manager Plugin
Bug Type: File Upload
Risk Level: Critical

Solution:
Restrict access to the wp-content/plugins/html5avmanager/lib/uploadify/custom.php file (e.g. via .htaccess).

Content Management, File Inclusion

Application: WordPress
Affected Version: version 0.2 and other versions.
Vendor’s URL: Asset Manager Plugin
Bug Type: File Upload
Risk Level: Critical

Solution:
Restrict access to the wp-content/plugins/asset-manager/upload.php file (e.g. via .htaccess).

Content Management, File Inclusion

Application: WordPress
Affected Version: version 0.4.2.1 and other versions.
Vendor’s URL: FoxyPress Plugin
Bug Type: File Upload
Risk Level: Critical

Solution:
Update to version 0.4.2.2.

Content Management, File Inclusion

Application: WordPress
Affected Version: version 1.1.3 and other versions.
Vendor’s URL: Thinkun Remind Plugin
Bug Type: File Inclusion
Risk Level: Critical

Solution:
Edit the source code to ensure that input is properly verified.

Content Management, File Inclusion

Application: WordPress
Affected Version: version 1.0 and other versions.
Vendor’s URL: Simple Download Button Shortcode Plugin
Bug Type: File Disclosure
Risk Level: Critical

Solution:
Edit the source code to ensure that input is properly verified.

Content Management, Information Disclosure

Application: WordPress
Affected Version: version 2.1 and other versions.
Vendor’s URL: RBX Gallery Plugin
Bug Type: File Upload
Risk Level: Critical

Solution:
Restrict access to the wp-content/plugins/rbxgallery/uploader.php file (e.g. via .htaccess).

Content Management, File Inclusion

Application: WordPress
Affected Version: version 2.1.0 and prior versions.
Vendor’s URL: Top Quark Architecture Plugin
Bug Type: File Upload
Risk Level: Critical

Solution:
Update to version 2.1.1.

Content Management, File Inclusion

Application: WordPress
Affected Version: version 1.1.0 and other versions.
Vendor’s URL: Easy Contact Forms Export Plugin
Bug Type: File Disclosure
Risk Level: Critical

Solution:
Edit the source code to ensure that input is properly verified.

Content Management, Information Disclosure

Application: WordPress
Affected Version: version 2.5.29 and prior versions.
Vendor’s URL: wpStoreCart Plugin
Bug Type: File Upload
Risk Level: Critical

Solution:
Update to version 2.5.30.

Content Management, E-Commerce, File Inclusion

Application: WordPress
Affected Version: version 1.3 and other versions.
Vendor’s URL: Nmedia Member Conversation Plugin
Bug Type: File Upload
Risk Level: Critical

Solution:
Restrict access to the /wp-content/plugins/wordpress-member-private-conversation/doupload.php script (e.g. via .htaccess).

Content Management, File Inclusion

Application: WordPress
Affected Version: version 1.2.4 and other versions.
Vendor’s URL: Font Uploader Plugin
Bug Type: File Upload
Risk Level: Critical

Solution:
Edit the source code to ensure that input is properly verified.

Content Management, File Inclusion

Application: SugarCRM
Affected Version: versions prior to 6.4.0.
Vendor’s URL: SugarCRM
Bug Type: Code Execution
Risk Level:

Solution:
Update to version 6.4.0 or later.

Content Management, Remote Command Execution

Application: WordPress
Affected Version: version 1.11 and prior versions.
Vendor’s URL: SS Quiz Plugin
Bug Type: Cross Site Scripting and Security Bypass
Risk Level: Critical

Solution:
Update to version 1.12.

Access Bypass, Content Management, Cross Site Scripting

Application: e107
Affected Version: version 1.4 and other versions.
Vendor’s URL: Hupsi Fancybox Plugin
Bug Type: File Upload
Risk Level: Critical

Solution:
Restrict access to the e107_plugins/hupsi_fancybox/uploader/uploadify.php script (e.g. via .htaccess).

Content Management, File Inclusion

Application: e107
Affected Version: version 2.06 and other versions.
Vendor’s URL: Radio Plan Plugin
Bug Type: File Upload
Risk Level: Critical

Solution:
Restrict access to the e107_plugins/radio_plan/admin/upload.php script (e.g. via .htaccess).

Content Management, File Inclusion

Application: e107
Affected Version: version 1.1 and other versions.
Vendor’s URL: Hupsi Share Plugin
Bug Type: File Upload
Risk Level: Critical

Solution:
Restrict access to the e107_plugins/hupsi_share/inc/uploader/uploadify.php script (e.g. via .htaccess).

Content Management, File Inclusion

Application: Joomla!
Affected Version: version 2.0 and prior versions.
Vendor’s URL: Easy Flash Uploader Module
Bug Type: File Upload
Risk Level: Critical

Solution:
Update to version 2.1.

Content Management, File Inclusion