[wp-hackers] WordPress <= 2.8.5 Unrestricted File Upload Arbitrary PHP Code Execution

g30rg3_x g30rg3x at gmail.com
Wed Nov 11 18:37:17 UTC 2009

2009/11/11 Matthew Kettlewell <ceo at kettlewell.net>:
> Would be interesting to see how many servers in the wild have Apache
> configured to allow this sort of thing...
Not so sure but i guess that (from recent incidents reports)
MediaTemple is one of them.

Kinda weird behavior, couldn't actually reproduce it as of the moment
(in any real production environment) but since the documentation
states then it should be true...


More information about the wp-hackers mailing list