WordPress Slideshow Gallery 1.4.6 Shell Upload Exploit + Demo

# WordPress Slideshow Gallery 1.4.6 Shell Upload Exploit

# WordPress Slideshow Gallery plugin version 1.4.6 suffers from a remote shell upload vulnerability (CVE-2014-5460)

# Vulnerability discovered by: Jesus Ramirez Pichardo – http://whitexploit.blogspot.mx/

# Exploit written by: Claudio Viviani – info@homelab.it – http://www.homelab.it

# Info:

# Any user could upload php files (administrator by default)