Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
seebugRootSSV:61259
HistoryJan 02, 2014 - 12:00 a.m.

Advanced Dewplayer Plugin for WordPress 'download-file.php'脚本目录遍历漏洞

2014-01-0200:00:00
Root
www.seebug.org
10

0.265 Low

EPSS

Percentile

96.8%

JSON

Bugtraq ID:64587
CVE ID:CVE-2013-7240

WordPress是一种使用PHP语言开发的博客平台,用户可以在支持PHP和MySQL数据库的服务器上架设自己的网志。

WordPress Advanced Dewplayer插件不正确限制对wp-content/plugins/advanced-dewplayer/admin-panel/download-file.php脚本的访问,允许攻击者利用漏洞通过目录遍历序列读取任意文件。
0
WordPress Advanced Dewplayer Plugin 1.x
目前没有详细解决方案提供:

http://wordpress.org/plugins/advanced-dewplayer/

Related

wpvulndb 1
prion 1
openvas 2
cvelist 1
cve 1
nvd 1
patchstack 1
nuclei 1
wpvulndb
wpvulndb
Advanced Dewplayer <= 1.2 - download-file.php dew_file Parameter Traversal Arbitrary File Access
2014-08-01 00:00:00
prion
prion
Directory traversal
2014-01-03 18:54:00
openvas
openvas
WordPress Advanced Dewplayer 'dew_file' Directory Traversal Vulnerability
2014-01-07 00:00:00
WordPress Multiple Plugins / Themes Directory Traversal / File Download Vulnerability (HTTP)
2020-11-20 00:00:00
cvelist
cvelist
CVE-2013-7240
2014-01-02 15:00:00
cve
cve
CVE-2013-7240
2014-01-03 18:54:09
nvd
nvd
CVE-2013-7240
2014-01-03 18:54:09
patchstack
patchstack
WordPress Advanced Dewplayer Plugin - Script Directory Traversal
2013-12-30 00:00:00
nuclei
nuclei
WordPress Plugin Advanced Dewplayer 1.2 - Directory Traversal
2021-07-25 23:49:51

0.265 Low

EPSS

Percentile

96.8%

JSON
Related for SSV:61259
wpvulndb1prion1openvas2cvelist1cve1nvd1patchstack1nuclei1