12 matches found
VulnCheck KEV: CVE-2015-5471
Absolute path traversal vulnerability in include/user/download.php in the Swim Team plugin 1.44.10777 for WordPress allows remote attackers to read arbitrary files via a full pathname in the file parameter...
Path traversal
Absolute path traversal vulnerability in include/user/download.php in the Swim Team plugin 1.44.10777 for WordPress allows remote attackers to read arbitrary files via a full pathname in the file parameter...
CVE-2015-5471
Absolute path traversal vulnerability in include/user/download.php in the Swim Team plugin 1.44.10777 for WordPress allows remote attackers to read arbitrary files via a full pathname in the file parameter...
CVE-2015-5471
CVE-2015-5471 affects WordPress Swim Team plugin
WordPress Swim Team Plugin 1.44.10777 - Arbitrary File Download
The code in ./wp-swimteam/include/user/download.php doesn't sanitize user input from downloading sensitive system files: 50 $file = urldecode$args'file' ; 51 $fh = fopen$file, 'r' or die'Unable to load file, something bad has happened.' ; 52 53 while !feof$fh 54 $txt .= fread$fh, 1024 ; 55 56 //...
WordPress Swim Team Plugin Arbitrary File Download Vulnerability
WordPress is the WordPress Software Foundation's set of blogging platform developed using the PHP language, which supports personal blog sites set up on servers with PHP and MySQL. Swim Team aka, wp-SwimTeam is one of the plug-ins for the Swim Team management system. An arbitrary file download...
WordPress Swim Team Plugin 1.44.10777 - Arbitrary File Download
Swim Team plugin is prone to an arbitrary file download vulnerability. It allows an attacker to download arbitrary files from the web server and get potentially sensitive information. Solution Update the plugin...
WordPress Plugin Swim Team 1.44.10777 - Arbitrary File Download
WordPress Plugin Swim Team 1.44.10777 - Arbitrary File Download Title: Remote file download vulnerability in Wordpress Plugin wp-swimteam v1.44.10777 Author: Larry W. Cashdollar, @larry0 Date: 2015-07-02 Download Site: https://wordpress.org/plugins/wp-swimteam Vendor: Mike Walsh...
WordPress Plugin Swim Team 1.44.10777 - Arbitrary File Download
Title: Remote file download vulnerability in Wordpress Plugin wp-swimteam v1.44.10777 Author: Larry W. Cashdollar, @larry0 Date: 2015-07-02 Download Site: https://wordpress.org/plugins/wp-swimteam Vendor: Mike Walsh www.MichaelWalsh.org Vendor Notified: 2015-07-02, fixed in v1.45beta3 Vendor...
WordPress Swim Team Plugin <= 1.44.10777 - Absolute Path Traversal
This vulnerability is in include/user/download.php. It allows an attacker to read arbitrary files via a full pathname in the "file" parameter. Solution Update the plugin...
Swim Team <= v1.44.10777 - Local File Inclusion
The code in ./wp-swimteam/include/user/download.php doesn't sanitize user input from downloading sensitive system files. PoC $ curl "http://www.vapidlabs.com/wp-content/plugins/wp-swimteam/include/user/download.php?file=/etc/passwd=/etc/passwd=text/html=1=/usr/share/wordpress"...
Swim Team <= v1.44.10777 - Local File Inclusion
The code in ./wp-swimteam/include/user/download.php doesn't sanitize user input from downloading sensitive system files. $ curl...