st0p's blog

转自:鬼仔's Blog

=============================================
- Release date: November 11th, 2009
- Discovered by: Dawid Golunski
- Severity: Moderately High
=============================================

I. VULNERABILITY
-------------------------
WordPress < = 2.8.5 Unrestricted File Upload Arbitrary PHP Code Execution

II. BACKGROUND
-------------------------
WordPress is a state-of-the-art publishing platform with a focus on aesthetics, web standards,
and usability. WordPress is both free and priceless at the same time. More simply, WordPress is
what you use when you want to work with your blogging software, not fight it.

III. DESCRIPTION
-------------------------

WordPress allows authorised users to add an attachment to a blog post.
It does not sanitize provided file properly before moving it to an uploads directory. Read more »

唉，最近一直忙于私事，没时间上网，天天QQ挂在那，人不在。。。过段时间就好了。
在这对一些朋友说对不起，答应他们的事得拖后了。
以下有图无真相