Lucene search
PRIOn knowledge basePRION:CVE-2015-8351HistorySep 11, 2017 - 8:29 p.m.
Directory traversal
2017-09-1120:29:00
PRIOn knowledge base
www.prio-n.com
7
PHP remote file inclusion vulnerability in the Gwolle Guestbook plugin before 1.5.4 for WordPress, when allow_url_include is enabled, allows remote authenticated users to execute arbitrary PHP code via a URL in the abspath parameter to frontend/captcha/ajaxresponse.php. NOTE: this can also be leveraged to include and execute arbitrary local files via directory traversal sequences regardless of whether allow_url_include is enabled.
| CPE | Name | Operator | Version |
|---|---|---|---|
| gwolle_guestbook | le | 1.5.3 |
Related
exploitpack
exploitpack
WordPress Plugin Gwolle Guestbook 1.5.3 - Remote File Inclusion
2015-12-03 00:00:00
wpvulndb
wpvulndb
Gwolle Guestbook <= 1.5.3 - Remote File Inclusion (RFI)
2015-10-21 00:00:00
checkpoint_advisories
checkpoint_advisories
WordPress Gwolle Guestbook Plugin Remote File Inclusion (CVE-2015-8351)
2015-12-16 00:00:00
nvd
nvd
CVE-2015-8351
2017-09-11 20:29:00
zdt
zdt
WordPress Gwolle Guestbook 1.5.3 Remote File Inclusion Vulnerability
2015-12-03 00:00:00
cvelist
cvelist
CVE-2015-8351
2017-09-11 20:00:00
packetstorm
packetstorm
WordPress Gwolle Guestbook 1.5.3 Remote File Inclusion
2015-12-02 00:00:00
cve
cve
CVE-2015-8351
2017-09-11 20:29:00
openvas
openvas
WordPress Gwolle Guestbook Plugin < 1.5.4 RFI Vulnerability
2017-09-12 00:00:00
htbridge
htbridge
Remote File Inclusion in Gwolle Guestbook WordPress Plugin
2015-10-14 00:00:00
exploitdb
exploitdb
WordPress Plugin Gwolle Guestbook 1.5.3 - Remote File Inclusion
2015-12-03 00:00:00