Wordpress » Wordpress : Security Vulnerabilities, CVEs, Published In 2014 (Directory traversal) CVSS score >= 1
Directory traversal vulnerability in download-file.php in the Advanced Dewplayer plugin 1.2 for WordPress allows remote attackers to read arbitrary files via a .. (dot dot) in the dew_file parameter.
Max CVSS
5.0
EPSS Score
26.52%
Published
2014-01-03
Updated
2014-02-25
1 vulnerabilities found