Lucene search
K

10 matches found

RedhatCVE
RedhatCVE
added 2025/07/21 10:11 a.m.5 views

CVE-2015-10136

The GI-Media Library plugin for WordPress is vulnerable to Directory Traversal in versions before 3.0 via the 'fileid' parameter. This allows unauthenticated attackers to read the contents of arbitrary files on the server, which can contain sensitive information...

7.5CVSS6.6AI score0.02041EPSS
Exploits0References1
NVD
NVD
added 2025/07/19 10:15 a.m.6 views

CVE-2015-10136

The GI-Media Library plugin for WordPress is vulnerable to Directory Traversal in versions before 3.0 via the 'fileid' parameter. This allows unauthenticated attackers to read the contents of arbitrary files on the server, which can contain sensitive information...

7.5CVSS0.02041EPSS
Exploits0References7
Vulnrichment
Vulnrichment
added 2025/07/19 9:23 a.m.3 views

CVE-2015-10136 GI-Media Library < 3.0 - Directory Traversal

The GI-Media Library plugin for WordPress is vulnerable to Directory Traversal in versions before 3.0 via the 'fileid' parameter. This allows unauthenticated attackers to read the contents of arbitrary files on the server, which can contain sensitive information...

7.5CVSS7.1AI score0.02041EPSS
Exploits0References7
Cvelist
Cvelist
added 2025/07/19 9:23 a.m.9 views

CVE-2015-10136 GI-Media Library < 3.0 - Directory Traversal

The GI-Media Library plugin for WordPress is vulnerable to Directory Traversal in versions before 3.0 via the 'fileid' parameter. This allows unauthenticated attackers to read the contents of arbitrary files on the server, which can contain sensitive information...

7.5CVSS0.02041EPSS
Exploits0References7
CVE
CVE
added 2025/07/19 9:23 a.m.20 views

CVE-2015-10136

The CVE-2015-10136 issue affects the GI-Media Library plugin for WordPress (pre-3.0). The vulnerability is a Directory Traversal via the fileid parameter, allowing unauthenticated attackers to read arbitrary server files. Impact is described as high (CVSSv3.1: 7.5, NETWORK/low complexity, no user...

7.5CVSS6.6AI score0.02041EPSS
Exploits0References7Affected Software1
Positive Technologies
Positive Technologies
added 2025/07/19 12:0 a.m.3 views

PT-2025-30128

Name of the Vulnerable Software and Affected Versions GI-Media Library plugin for WordPress versions prior to 3.0 Description The GI-Media Library plugin for WordPress is susceptible to Directory Traversal via the fileid parameter. This allows unauthenticated attackers to read arbitrary files on...

7.5CVSS6.5AI score0.02041EPSS
Exploits0References11
CNNVD
CNNVD
added 2025/07/19 12:0 a.m.2 views

WordPress plugin GI-Media Library 路径遍历漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A path traversal...

7.5CVSS6.7AI score0.02041EPSS
Exploits0References8
Metasploit
Metasploit
added 2015/04/24 7:24 a.m.13 views

WordPress GI-Media Library Plugin Directory Traversal Vulnerability

This module exploits a directory traversal vulnerability in WordPress Plugin GI-Media Library version 2.2.2, allowing to read arbitrary files from the system with the web server privileges. This module has been tested successfully on GI-Media Library version 2.2.2 with WordPress 4.1.3 on Ubuntu...

7.3AI score
Exploits0
wpexploit
wpexploit
added 2015/01/15 10:8 a.m.9 views

GI-Media Library <= 2.2.2 - Arbitrary File Download

The gi-media-library WordPress plugin was affected by an Arbitrary File Download security vulnerability. /wp-content/plugins/gi-media-library/download.php?fileid=Li4vLi4vLi4vd3AtY29uZmlnLnBocA== Where "Li4vLi4vLi4vd3AtY29uZmlnLnBocA==" is "../../../wp-config.php" Base64 encoded...

2.4AI score
Exploits0References2
Patchstack
Patchstack
added 2015/01/15 12:0 a.m.6 views

WordPress GI-Media Library Plugin <= 2.2.2 - Arbitrary File Download

This plugin is prone to an arbitrary file download vulnerability. Solution Update the plugin...

2.9AI score
Exploits0References1Affected Software1
Rows per page
Query Builder