5

CVE-2014-5465

Exploit

Download Shortcode <= 0.2.3 - Directory Traversal

Directory traversal vulnerability in force-download.php in the Download Shortcode plugin 0.2.3 and earlier for WordPress allows remote attackers to read arbitrary files via a .. (dot dot) in the file parameter.
Mögliche Gegenmaßnahme
Download Shortcode: Update to version 1.0, or a newer patched version
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
WerdswordsDownload Shortcode SwPlatformwordpress Version <= 0.2.3
WerdswordsDownload Shortcode Version0.1 SwPlatformwordpress
WerdswordsDownload Shortcode Version0.2 SwPlatformwordpress
WerdswordsDownload Shortcode Version0.2.2 SwPlatformwordpress
Weitere Schwachstelleninformationen
SystemWordPress Plugin
Produkt Download Shortcode
Version *-0.2.3
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 13.54% 0.96
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 5 10 2.9
AV:N/AC:L/Au:N/C:P/I:N/A:N
CWE-22 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

The product uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the product does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory.

http://packetstormsecurity.com/files/128024/WordPress-ShortCode-1.1-Local-File-Inclusion.html
Exploit
http://wordpress.org/plugins/download-shortcode/changelog/
Patch
http://wordpress.org/support/topic/plugin-download-shortcode-security-issue
Patch
Vendor Advisory
http://wordpress.org/support/topic/vulnerability-5
Patch
http://www.exploit-db.com/exploits/34436
Exploit
http://www.securityfocus.com/bid/69440
Exploit
https://www.wordfence.com/threat-intel/vulnerabilities/id/5bae7516-e9dd-4c0c-b687-9cbe09b4c8bc
Third Party Advisory