CVE-2012-3575

Name of the Vulnerable Software and Affected Versions RBX Gallery plugin version 2.1 for WordPress

Description The issue allows remote attackers to execute arbitrary code by uploading a file with an executable extension to the uploader.php file, and then accessing it via a direct request to the file in uploads/rbxslider.

Recommendations For RBX Gallery plugin version 2.1, consider disabling the uploader.php file until a patch is available to prevent remote attackers from uploading malicious files. Restrict access to the uploads/rbxslider directory to minimize the risk of exploitation. Avoid using the uploader.php file for uploading files until the issue is resolved.