CVE-2015-7683

2015-10-16T20:59:00
ID CVE-2015-7683
Type cve
Reporter cve@mitre.org
Modified 2018-10-09T19:58:00

Description

Absolute path traversal vulnerability in Font.php in the Font plugin before 7.5.1 for WordPress allows remote administrators to read arbitrary files via a full pathname in the url parameter to AjaxProxy.php.