CVE-2019-6715

creationtimestamp| type| source ---|---|--- 2023-05-15 09:53:54+00:00| seen| https://t.me/itsecnews/2587 2023-05-15 20:30:05+00:00| exploited| https://t.me/truesecator/4382 2025-03-11 22:00:06+00:00| seen| Telegram/fSuv2KpyfIksaa8qqgqv5fCpt00UzRfooou1l9gqHjc-A0g...

WordPress W3 Total Cache 0.9.3 File Read / Directory Traversal

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'WordPress W3 Total Cache File Read Vulnerability', 'Description' = %q This module exploits an unauthenticated directory traversal vulnerability i...

WordPress W3 Total Cache Plugin Arbitrary File Read (CVE-2019-6715)

An Arbitrary File Read vulnerability exists in WordPress W3 Total Cache plugin. Successful exploitation of this vulnerability would allow remote attackers to execute arbitrary web script into the effected system...

CVE-2019-6715

The CVE concerns WordPress W3 Total Cache plugin versions before 0.9.4, where an unauthenticated attacker can read arbitrary files via the SubscribeURL field in SubscriptionConfirmation JSON data, targeting the pub/sns.php endpoint. Technical details from connected documents specify an unauthenti...