EUVD-2015-7585

🗓️ 07 Oct 2025 00:30:54Reported by EUVDType

Absolute path traversal vulnerability in Font plugin allows file reading via AjaxProxy.php URL

Reporter	Title	Published	Views	Family All 11
0day.today	WordPress Font 7.5 Path Traversal Vulnerability	13 Oct 201500:00	–	zdt
CNVD	WordPress Font plugin path traversal vulnerability	13 Oct 201500:00	–	cnvd
CVE	CVE-2015-7683	16 Oct 201520:00	–	cve
Cvelist	CVE-2015-7683	16 Oct 201520:00	–	cvelist
NVD	CVE-2015-7683	16 Oct 201520:59	–	nvd
Packet Storm	WordPress Font 7.5 Path Traversal	12 Oct 201500:00	–	packetstorm
Patchstack	WordPress Font Plugin <= 7.5.0 - Absolute Path Traversal	2 Oct 201500:00	–	patchstack
Prion	Path traversal	16 Oct 201520:59	–	prion
securityvulns	CVE-2015-7683: Absolute Path Traversal in the Font WordPress Plugin	26 Oct 201500:00	–	securityvulns
securityvulns	Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)	26 Oct 201500:00	–	securityvulns

[
  {
    "enisaIdVendor": [
      {
        "id": "6c591dd0-259a-3140-87b6-7915202bc510",
        "vendor": {
          "name": "n/a"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "0d4402ed-8ef2-3eba-8c61-356ebadb24ec",
        "product": {
          "name": "n/a"
        },
        "product_version": "n/a"
      }
    ]
  }
]

Source	Link
packetstormsecurity	www.packetstormsecurity.com/files/cve/CVE-2015-7683
wpvulndb	www.wpvulndb.com/vulnerabilities/8214
packetstormsecurity	www.packetstormsecurity.com/files/133930/WordPress-Font-7.5-Path-Traversal.html
securityfocus	www.securityfocus.com/archive/1/536670/100/0/threaded
wordpress	www.wordpress.org/plugins/font/changelog/
github	www.github.com/advisories/GHSA-293c-r3p4-g63r

07 Oct 2025 00:30Current

6.2Medium risk

Vulners AI Score6.2

CVSS 24

EPSS0.00272