WordPress GD Rating System plugin 2.3 - Directory Traversal vulnerability (2)

2018-01-0900:00:00

d4wner

patchstack.com

0.007 Low

EPSS

Percentile

79.7%

JSON

A second Directory Traversal vulnerability found by d4wner in WordPress GD Rating System plugin version 2.3. Directory Traversal in the wp-admin/admin.php panel parameter for the gd-rating-system-information page.

Solution

           1/9/2018 - we were unable to find a patched version of this plugin.

CPENameOperatorVersion
gd rating systemeq2.3

CPE	Name	Operator	Version
	gd rating system	eq	2.3

References

wordpress.org/plugins/gd-rating-system/#developers

0.007 Low

EPSS

Percentile

79.7%

JSON

Related for PATCHSTACK:B4CEEE988FDE9C99346B9C4F9B5CC6E2