Frontend File Manager Plugin, CVE-2014-5324

CVE, Research URL: CVE-2014-5324
Home page URL: Security reports for Frontend File Manager Plugin
Application: Frontend File Manager Plugin
Published on: Sep 26, 2014
Research Description: Unrestricted file upload vulnerability in the N-Media file uploader plugin before 3.4 for WordPress allows remote authenticated users to execute arbitrary PHP code by leveraging Author privileges to store a file.
Affected versions: max 2.0.
Status: vulnerable