Path traversal

2022-02-2809:15:00

PRIOn knowledge base

www.prio-n.com

5 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

37.6%

JSON

The Contact Forms - Drag & Drop Contact Form Builder WordPress plugin through 1.0.5 allows high privilege users to download arbitrary files from the web server via a path traversal attack

CPENameOperatorVersion
contact_formle1.0.5

CPE	Name	Operator	Version
	contact_form	le	1.0.5

References

wpscan.com/vulnerability/31824250-e0d4-4285-97fa-9880b363e075