Arbitrary file upload vulnerability in WordPress User Submitted Posts plugin. https://blog.nintechnet.com/arbitrary-file-upload-vulnerability-in-wordpress-user-submitted-posts-plugin/