WordPress Plugin Vulnerabilities

Font Uploader 1.2.4 - Arbitrary File Upload

Description

The font-uploader WordPress plugin was affected by an Arbitrary File Upload security vulnerability.

Affects Plugins

Plugin icon
font-uploader
No known fix

References

CVE
CVE-2012-3814
Exploitdb
18994

Miscellaneous

Verified
No
WPVDB ID
e75c1319-cce2-471b-bc7e-79eb938eb716

Timeline

Publicly Published
2014-08-01 (about 11 years ago)
Added
2014-08-01 (about 11 years ago)
Last Updated
2019-10-21 (about 6 years ago)

Other

Published
Title
Published
2025-02-10
Title
WP Foodbakery < 4.8 - Unauthenticated Arbitrary File Upload
Published
2024-11-25
Title
Booking calendar, Appointment Booking System < 3.2.16 - Unauthenticated Stored Cross-Site Scripting via SVG File Upload
Published
2014-08-01
Title
Contact Form 7 <= 3.5.2 - File Upload Remote Code Execution
Published
2024-11-13
Title
B-Banner Slider <= 1.1 - Authenticated (Subscriber+) Arbitrary File Upload
Published
2025-01-07
Title
4ECPS Web Forms <= 0.2.18 - Unauthenticated Arbitrary File Upload