Lucene search
HistoryApr 10, 2011 - 2:51 a.m.
CVE-2011-1669
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
AI Score
6.7
Confidence
Low
EPSS
0.03
Percentile
90.9%
Directory traversal vulnerability in wp-download.php in the WP Custom Pages module 0.5.0.1 for WordPress allows remote attackers to read arbitrary files via …%2F (encoded dot dot) sequences in the url parameter.
Affected configurations
Node
mikovinywp_custom_pagesMatch0.5.0.1
wordpresswordpress
| Vendor | Product | Version | CPE |
|---|---|---|---|
| mikoviny | wp_custom_pages | 0.5.0.1 | cpe:2.3:a:mikoviny:wp_custom_pages:0.5.0.1:*:*:*:*:*:*:* |
| wordpress | wordpress | * | cpe:2.3:a:wordpress:wordpress:*:*:*:*:*:*:*:* |
Related
exploitdb
exploitdb
WordPress Plugin Custom Pages 0.5.0.1 - Local File Inclusion
2011-04-05 00:00:00
cvelist
cvelist
CVE-2011-1669
2011-04-10 01:00:00
patchstack
patchstack
WordPress Custom Pages Plugin 0.5.0.1 - Local File Inclusion
2011-04-05 00:00:00
cve
cve
CVE-2011-1669
2011-04-10 02:51:20
wpvulndb
wpvulndb
WP Custom Pages 0.5.0.1 - LFI
2014-08-01 00:00:00
nuclei
nuclei
WP Custom Pages 0.5.0.1 - Local File Inclusion (LFI)
2021-07-15 03:01:50
prion
prion
Directory traversal
2011-04-10 02:51:00
openvas
openvas
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
AI Score
6.7
Confidence
Low
EPSS
0.03
Percentile
90.9%
Related for NVD:CVE-2011-1669