cbcvebase.
CVE-2012-10020
published 2025-07-22

CVE-2012-10020: The FoxyPress plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the uploadify.php file in versions up to, and…

PriorityP274critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
EXPLOIT
EPSS
2.87%
85.0th percentile
The FoxyPress plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the uploadify.php file in versions up to, and including, 0.4.2.1. This makes it possible for unauthenticated attackers to upload arbitrary files on the affected sites server which may make remote code execution possible.

Affected

2 ranges
VendorProductVersion rangeFixed in
webmovementllcfoxypress< 0.4.2.20.4.2.2
webmovementllcfoxypress<= 0.4.2.1

Detection & IOCsextracted from sources · hover to see the quote

pathuploadify.php
versionFoxyPress <= 0.4.2.1
  • Monitor for unauthenticated POST requests to uploadify.php within the FoxyPress plugin directory on WordPress installations
  • Alert on arbitrary file uploads (e.g., .php files) submitted by unauthenticated users via the FoxyPress plugin endpoint
  • ·Vulnerability affects only FoxyPress plugin versions up to and including 0.4.2.1; verify plugin version before applying detections
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.