Описание
The Download Monitor WordPress plugin before 4.5.91 does not ensure that files to be downloaded are inside the blog folders, and not sensitive, allowing high privilege users such as admin to download the wp-config.php or /etc/passwd even in an hardened environment or multisite setup.
Ссылки
- ExploitThird Party Advisory
- ExploitThird Party Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 4.5.91 (исключая)
cpe:2.3:a:wpchill:download_monitor:*:*:*:*:*:wordpress:*:*
EPSS
Процентиль: 75%
0.00888
Низкий
4.9 Medium
CVSS3
4 Medium
CVSS2
Дефекты
CWE-552
Связанные уязвимости
CVSS3: 4.9
github
больше 3 лет назад
The Download Monitor WordPress plugin before 4.5.91 does not ensure that files to be downloaded are inside the blog folders, and not sensitive, allowing high privilege users such as admin to download the wp-config.php or /etc/passwd even in an hardened environment or multisite setup.
EPSS
Процентиль: 75%
0.00888
Низкий
4.9 Medium
CVSS3
4 Medium
CVSS2
Дефекты
CWE-552