Lucene search
HistoryOct 16, 2015 - 8:59 p.m.
CVE-2015-7683
4 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:S/C:P/I:N/A:N
6.6 Medium
AI Score
Confidence
Low
0.002 Low
EPSS
Percentile
59.8%
Absolute path traversal vulnerability in Font.php in the Font plugin before 7.5.1 for WordPress allows remote administrators to read arbitrary files via a full pathname in the url parameter to AjaxProxy.php.
Affected configurations
Node
font_projectfontRange≤7.5wordpress
Related
zdt
zdt
WordPress Font 7.5 Path Traversal Vulnerability
2015-10-13 00:00:00
wpvulndb
wpvulndb
Font <= 7.5 - Authenticated Path Traversal
2015-10-12 00:00:00
cve
cve
CVE-2015-7683
2015-10-16 20:59:16
packetstorm
packetstorm
WordPress Font 7.5 Path Traversal
2015-10-12 00:00:00
cvelist
cvelist
CVE-2015-7683
2015-10-16 20:00:00
securityvulns
securityvulns
CVE-2015-7683: Absolute Path Traversal in the Font WordPress Plugin
2015-10-26 00:00:00
patchstack
patchstack
WordPress Font Plugin <= 7.5.0 - Absolute Path Traversal
2015-10-02 00:00:00
prion
prion
Path traversal
2015-10-16 20:59:00
4 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:S/C:P/I:N/A:N
6.6 Medium
AI Score
Confidence
Low
0.002 Low
EPSS
Percentile
59.8%
Related for NVD:CVE-2015-7683