PictPress 0.91 vulnerability



It just came to my attention that PictPress 0.91 has a vulnerability for website attacks caused by an unvalidated argument to the resize.php script. As far as I know this vulnerability has been fixed from version 0.99 upwards. All users of the older version should upgrade or remove the plugin from their website.

If there are still vulnerabilities in the newer versions, please let me know.

Leave a Reply