Unrated severityNVD Advisory· Published Jan 28, 2015· Updated May 6, 2026
CVE-2015-1375
CVE-2015-1375
Description
pixabay-images.php in the Pixabay Images plugin before 2.4 for WordPress does not properly restrict access to the upload functionality, which allows remote attackers to write to arbitrary files.
Affected products
1- cpe:2.3:a:pixabay_images_project:pixabay_images:*:*:*:*:*:wordpress:*:*Range: <=2.3
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
7- packetstormsecurity.com/files/130017/WordPress-Pixarbay-Images-2.3-XSS-Bypass-Upload-Traversal.htmlnvdExploit
- seclists.org/fulldisclosure/2015/Jan/75nvdExploit
- www.exploit-db.com/exploits/35846nvdExploit
- www.openwall.com/lists/oss-security/2015/01/25/5nvd
- www.osvdb.org/117146nvd
- www.securityfocus.com/archive/1/534505/100/0/threadednvd
- plugins.trac.wordpress.org/changesetnvd
News mentions
0No linked articles in our index yet.