3 matches found
WordPress Elegant Themes Divi Theme Directory Traversal Nmap NSE Script
local http = require "http" local shortport = require "shortport" local stdnse = require "stdnse" local string = require "string" local vulns = require "vulns" local nmap = require "nmap" description = Directory traversal vulnerability in the Elegant Themes Divi theme for WordPress allows remote...
CVE-2015-1579
CVE-2015-1579 describes a directory traversal in the WordPress Slider Revolution plugin (revslider) prior to version 4.2. An attacker can cause read of arbitrary server files by supplying a .. sequence in the img parameter to the revslider_show_image action via wp-admin/admin-ajax.php. This affec...
WordPress Slider Revolution Plugin Local File Inclusion (CVE-2014-9734; CVE-2015-1579)
An information disclosure vulnerability has been reported in WordPress Slider Revolution Plugin. Successful exploitation of this vulnerability could allow a remote attacker to download local files, and may lead to disclosure of database credentials...