Lucene search
WPScanCVELIST:CVE-2023-1478HistoryApr 10, 2023 - 1:17 p.m.
CVE-2023-1478 Hummingbird < 3.4.2 - Unauthenticated Path Traversal
2023-04-1013:17:59
WPScan
www.cve.org
3
cve-2023-1478
unauthenticated
path traversal
hummingbird
wordpress plugin
The Hummingbird WordPress plugin before 3.4.2 does not validate the generated file path for page cache files before writing them, leading to a path traversal vulnerability in the page cache module.
CNA Affected
[
{
"vendor": "Unknown",
"product": "Hummingbird",
"versions": [
{
"status": "affected",
"versionType": "custom",
"version": "0",
"lessThan": "3.4.2"
}
],
"defaultStatus": "unaffected",
"collectionURL": "https://wordpress.org/plugins"
}
]Related
cve
cve
CVE-2023-1478
2023-04-10 14:15:09
nvd
nvd
CVE-2023-1478
2023-04-10 14:15:09
wpvulndb
wpvulndb
Hummingbird < 3.4.2 - Unauthenticated Path Traversal
2023-03-20 00:00:00
prion
prion
Path traversal
2023-04-10 14:15:00
wpexploit
wpexploit
Hummingbird < 3.4.2 - Unauthenticated Path Traversal
2023-03-20 00:00:00
wordfence
wordfence