CVE-2015-9479 2019-10-10T13:15:16.170-04:00 2019-10-10T14:30:40.233-04:00 MISC https://packetstormsecurity.com/files/132590/ The ACF-Frontend-Display plugin through 2015-07-03 for WordPress has arbitrary file upload via an action=upload request to js/blueimp-jQuery-File-Upload-d45deb1/server/php/index.php.