CVE-2015-7683

2015-10-16T16:59:16
ID CVE-2015-7683
Type cve
Reporter NVD
Modified 2018-10-09T15:58:18

Description

Absolute path traversal vulnerability in Font.php in the Font plugin before 7.5.1 for WordPress allows remote administrators to read arbitrary files via a full pathname in the url parameter to AjaxProxy.php.