CVE-2012-3814

Font Uploader 1.2.4 - Unauthenticated Arbitrary PHP File Upload via .php.ttf Extension

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2012-3814. PoCs published by Sammy FORGIT.

AI-analyzed exploit summary This exploit demonstrates an arbitrary file upload vulnerability in WordPress Font Uploader plugin 1.2.4, allowing an attacker to upload a malicious PHP file disguised as a TTF font file. The exploit uses cURL to send a POST request with the file, bypassing file extension restrictions.

Description

Unrestricted file upload vulnerability in font-upload.php in the Font Uploader plugin 1.2.4 for WordPress allows remote attackers to execute arbitrary PHP code by uploading a PHP file with a .php.ttf extension, then accessing it via a direct request to the file in font-uploader/fonts.

Exploits (1)

exploitdb WORKING POC VERIFIED
by Sammy FORGIT · phpwebappsphp
https://www.exploit-db.com/exploits/18994

This exploit demonstrates an arbitrary file upload vulnerability in WordPress Font Uploader plugin 1.2.4, allowing an attacker to upload a malicious PHP file disguised as a TTF font file. The exploit uses cURL to send a POST request with the file, bypassing file extension restrictions.

Classification
Working Poc 90%
Attack Type
Rce
Complexity
Trivial
Reliability
Reliable
Target: WordPress Font Uploader plugin 1.2.4
No auth needed
Prerequisites: Access to the target WordPress site with the vulnerable plugin installed
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3
Core References
Exploit exploit x_refsource_exploit-db
http://www.exploit-db.com/exploits/18994
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/49327
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://osvdb.org/82657

Scores

EPSS 0.1034
EPSS Percentile 95.1%

Details

CWE
CWE-264
Status published
Products (1)
pippin_williamson/font_uploader 1.2.4
Published Jun 27, 2012
Tracked Since Feb 18, 2026