CVE-2009-3890

Description

Unrestricted file upload vulnerability in the wp_check_filetype function in wp-includes/functions.php in WordPress before 2.8.6, when a certain configuration of the mod_mime module in the Apache HTTP Server is enabled, allows remote authenticated users to execute arbitrary code by posting an attachment with a multiple-extension filename, and then accessing this attachment via a direct request to a wp-content/uploads/ pathname, as demonstrated by a .php.jpg filename.

How to fix CVE-2009-3890

To remediate CVE-2009-3890, upgrade the affected package to a fixed version below.

• Debian/wordpress—upgrade to 2.8.6-1 or later

Is CVE-2009-3890 being exploited?

Moderate — EPSS is 10.5%. Track this CVE but it's not at the top of the prioritisation list.

Affected packages (1)

• from 0, < 2.8.6-1

References (1)

• ADVISORYsecurity-tracker.debian.org/tracker/CVE-2009-3890