3 matches found
CVE-2013-7240
Directory traversal vulnerability in download-file.php in the Advanced Dewplayer plugin 1.2 for WordPress allows remote attackers to read arbitrary files via a .. dot dot in the dewfile parameter...
CVE-2013-7240
The CVE-2013-7240 entry affects the WordPress plugin Advanced Dewplayer (version 1.2). A directory traversal flaw exists in the plugin’s download-file.php that allows an attacker to read arbitrary files by manipulating the dew_file parameter (dot-dot traversal). Exploitation details are consisten...
CVE-2013-7240
creationtimestamp| type| source ---|---|--- 2013-12-30 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/38936...