← Back

Wordthumb

wordthumb

Vendor: Binarymoon • 1 CVE

CVEs (1)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2014-4663
1Binarymoon
2Timthumb
Wordthumb
May 6, 2026
Jul 15, 2014
N/A· v4
N/A· v3
6.8 MEDIUM· v2
TimThumb 2.8.13 and WordThumb 1.07, when Webshot (aka Webshots) is enabled, allows remote attackers to execute arbitrary commands via shell metacharacters in the src parameter.