Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2012-1786

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2012-1786
Last Modified 06 Nov 2012 12:10:14
Published 19 Mar 2012 02:55:03
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2012-1786

Summary

The Media Upload form in the Video Embed & Thumbnail Generator plugin before 2.0 for WordPress allows remote attackers to obtain the installation path via unknown vectors.

Vulnerable Systems

Application

  • Kylegilman Video Embed %26 Thumbnail Generator 0.2

  • Kylegilman Video Embed %26 Thumbnail Generator 0.2.1

  • Kylegilman Video Embed %26 Thumbnail Generator 1.0

  • Kylegilman Video Embed %26 Thumbnail Generator 1.0.1

  • Kylegilman Video Embed %26 Thumbnail Generator 1.0.2

  • Kylegilman Video Embed %26 Thumbnail Generator 1.0.3

  • Kylegilman Video Embed %26 Thumbnail Generator 1.0.4

  • Kylegilman Video Embed %26 Thumbnail Generator 1.0.5

  • Kylegilman Video Embed %26 Thumbnail Generator 1.1


References

CONFIRM - http://wordpress.org/extend/plugins/video-embed-thumbnail-generator/changelog/

CONFIRM - http://plugins.trac.wordpress.org/changeset?old_path=%2Fvideo-embed-thumbnail-generator&old=507924&new_path=%2Fvideo-embed-thumbnail-generator&new=507924

BID - 52652


Last Updated: 27 May 2016 10:42:30