Themes Vulnerabilities

AREA53 <= 1.0.5 - File Upload Code Execution

Description

The area53 WordPress theme was affected by a File Upload Code Execution security vulnerability.

Affects Themes

area53
No known fix

References

Exploitdb
29068
URL
https://en.0day.today/exploits/21442

Classification

Type
RCE
OWASP top 10
A1: Injection
CWE
CWE-94

Miscellaneous

Verified
No
WPVDB ID
55b303d2-482b-47cb-aec5-e0e00cd4bf81

Timeline

Publicly Published
2014-08-01 (about 11 years ago)
Added
2014-08-01 (about 11 years ago)
Last Updated
2019-10-21 (about 6 years ago)

Other

Published
Title
Published
2014-05-11
Title
Formidable Forms Pro < 1.06.03 - Arbitrary File Upload via ofc_upload_image.php
Published
2022-12-29
Title
Multiple themes - Unauthenticated Arbitrary File Upload
Published
2025-04-15
Title
Real Estate Manager <= 7.3 - Unauthenticated Remote Code Execution
Published
2014-08-01
Title
DZS Video Gallery - ajax.php source Parameter Reflected XSS
Published
2025-01-07
Title
WordPress File Upload < 4.25.0 - Unauthenticated Remote Code Execution, Arbitrary File Read, and Arbitrary File Deletion