CVE-2015-4133

Reflex Gallery < 3.1.3 - Unrestricted File Upload

Title source: rule

Description

Unrestricted file upload vulnerability in admin/scripts/FileUploader/php.php in the ReFlex Gallery plugin before 3.1.4 for WordPress allows remote attackers to execute arbitrary PHP code by uploading a file with a PHP extension, then accessing it via a direct request to the file in uploads/ directory.

Exploits (4)

exploitdb WORKING POC VERIFIED

by Metasploit · rubyremotephp

https://www.exploit-db.com/exploits/36809

View Code ZIP pw:eip

nomisec WORKING POC 8 stars

by D3Ext · poc

https://github.com/D3Ext/CVE-2015-4133

View Code ZIP pw:eip

nomisec WORKING POC

by sug4r-wr41th · poc

https://github.com/sug4r-wr41th/CVE-2015-4133

View Code ZIP pw:eip

metasploit WORKING POC EXCELLENT

by Unknown · rubypocphp

https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/unix/webapp/wp_reflexgallery_file_upload.rb

View Code ZIP pw:eip

References (7)

[Third Party Advisory, VDB Entry] http://osvdb.org/show/osvdb/88853

[Exploit] http://packetstormsecurity.com/files/130845/

[Exploit] http://packetstormsecurity.com/files/131515/

[Patch] https://wordpress.org/plugins/reflex-gallery/changelog/

[Third Party Advisory] https://wpvulndb.com/vulnerabilities/7867

[Exploit] https://www.exploit-db.com/exploits/36809/

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/57100

Scores

EPSS 0.7522

EPSS Percentile 98.9%

Details

Status published

Products (1)

reflex_gallery_project/reflex_gallery < 3.1.3

Published May 28, 2015

Tracked Since Feb 18, 2026