Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
wpvulndbWpvulndbWPVDB-ID:9FD14F37-8C45-46F9-BCB6-8613D754DD1C
HistoryAug 28, 2015 - 12:00 a.m.

Job Manager <= 0.7.25 - Insecure Direct Object Reference (IDOR)

2015-08-2800:00:00
wpscan.com
18

0.025 Low

EPSS

Percentile

90.3%

JSON

It is possible to enumerate the CV filename that is uploaded on the server and then access the CV file by performing a bruteforce attack to the wordpress upload directory structure.

CPENameOperatorVersion
job-managereq*

Related

cve 1
prion 1
nvd 1
cvelist 1
cve
cve
CVE-2015-6668
2017-10-19 21:29:00
prion
prion
Directory traversal
2017-10-19 21:29:00
nvd
nvd
CVE-2015-6668
2017-10-19 21:29:00
cvelist
cvelist
CVE-2015-6668
2017-10-19 21:00:00

0.025 Low

EPSS

Percentile

90.3%

JSON
Related for WPVDB-ID:9FD14F37-8C45-46F9-BCB6-8613D754DD1C
cve1prion1nvd1cvelist1