WordPress Plugin Vulnerabilities

FCKeditor Deans With Pwwangs Code <= 1.0.0 - Remote Shell Upload

Description

The deans-fckeditor-with-pwwangs-code-plugin-for-wordpress WordPress plugin was affected by a Remote Shell Upload security vulnerability.

Affects Plugins

Plugin icon
deans-fckeditor-with-pwwangs-code-plugin-for-wordpress
No known fix

References

URL
https://packetstormsecurity.com/files/#111319/

Classification

Type
RFI
OWASP top 10
A1: Injection
CWE
CWE-98

Miscellaneous

Verified
No
WPVDB ID
eb05e811-9033-40d2-8215-6f196c353414

Timeline

Publicly Published
2014-08-01 (about 11 years ago)
Added
2014-08-01 (about 11 years ago)
Last Updated
2019-10-21 (about 6 years ago)

Other

Published
Title
Published
2026-03-03
Title
Remons < 1.3.5 - Unauthenticated Local File Inclusion
Published
2014-09-28
Title
Zingiri Web Shop 2.2.0 - init.inc wpabspath Parameter Remote File Inclusion
Published
2025-12-31
Title
Indoor Plants <= 1.2.7 - Unauthenticated Local File Inclusion
Published
2025-03-27
Title
WpEvently < 4.3.0 - Authenticated (Contributor+) Local File Inclusion
Published
2015-09-02
Title
BJ Lazy Load < 1.0 - Remote File Inclusion (Timthumb)