CVE-2014-4937

Directory traversal vulnerability in includes/bookxexport.php BookX plugin 1.7 for WordPress allows remote attackers to read arbitrary files via a .. dot dot in the file parameter...

EUVD-2014-4854

Malware in sbrugna...

BookX 1.7 - includes/bookx_export.php file Parameter Remote Path Traversal File Access

The bookx WordPress plugin was affected by an includes/bookxexport.php file Parameter Remote Path Traversal File Access security vulnerability...

CVE-2014-4937

Directory traversal vulnerability in includes/bookxexport.php BookX plugin 1.7 for WordPress allows remote attackers to read arbitrary files via a .. dot dot in the file parameter...

Directory traversal

Directory traversal vulnerability in includes/bookxexport.php BookX plugin 1.7 for WordPress allows remote attackers to read arbitrary files via a .. dot dot in the file parameter...

CVE-2014-4937

CVE-2014-4937 involves the WordPress plugin BookX (version 1.7) and its file includes/bookx_export.php . The root cause is missing input validation that allows a directory traversal via a ".." in the file parameter, enabling a remote attacker to read arbitrary files on the server. This is a local...

CVE-2014-4937

Directory traversal vulnerability in includes/bookxexport.php BookX plugin 1.7 for WordPress allows remote attackers to read arbitrary files via a .. dot dot in the file parameter...

WordPress BookX Plugin - Local File Include

BookX plugin's "includes/bookxexport.php" is prone to a local file include vulnerability because of failure of validation user-supplied input. It allows an attacker to get potentially sensitive information. Solution Update the plugin...