Описание
The RVM WordPress plugin before 6.4.2 does not have proper authorisation, CSRF checks and validation of the rvm_upload_regions_file_path parameter in the rvm_import_regions AJAX action, allowing any authenticated user, such as subscriber, to read arbitrary files on the web server
Ссылки
- ExploitThird Party Advisory
- ExploitThird Party Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 6.4.2 (исключая)
cpe:2.3:a:thinkupthemes:responsive_vector_maps:*:*:*:*:*:wordpress:*:*
EPSS
Процентиль: 93%
0.10223
Средний
6.5 Medium
CVSS3
4 Medium
CVSS2
Дефекты
CWE-863
CWE-352
Связанные уязвимости
CVSS3: 6.5
github
почти 4 года назад
The RVM WordPress plugin before 6.4.2 does not have proper authorisation, CSRF checks and validation of the rvm_upload_regions_file_path parameter in the rvm_import_regions AJAX action, allowing any authenticated user, such as subscriber, to read arbitrary files on the web server
EPSS
Процентиль: 93%
0.10223
Средний
6.5 Medium
CVSS3
4 Medium
CVSS2
Дефекты
CWE-863
CWE-352