Binarymoon » Wordthumb : Security Vulnerabilities, CVEs, CVSS score >= 5
TimThumb 2.8.13 and WordThumb 1.07, when Webshot (aka Webshots) is enabled, allows remote attackers to execute arbitrary commands via shell metacharacters in the src parameter.
Max CVSS
6.8
EPSS Score
12.49%
Published
2014-07-15
Updated
2014-07-15
1 vulnerabilities found