JM Twitter Cards <= 6.1 - Full Path Disclosure (FPD)

Sign up to our free email alerts service for instant vulnerability notifications!

Affects

Plugin jm-twitter-cards
fixed in version 6.2

References

URL https://security.dxw.com/advisories/full-path-disclosure-vulnerability-in-jm-twitter-cards-reveals-the-location-of-the-wordpress-installation-on-the-server/
URL https://github.com/TweetPressFr/jm-twitter-cards/issues/53

Classification

Type FPD
OWASP Top 10 A6: Sensitive Data Exposure
CWE CWE-200

Miscellaneous

Submitter ethicalhack3r
Submitter Website https://dewhurstsecurity.com/
Submitter Twitter ethicalhack3r
Views 115
Verified No
WPVDB ID 8211

Timeline

Publicly Published 2015-10-12 (about 1 year ago)
Added 2015-10-12 (about 1 year ago)
Last Updated 2015-10-12 (about 1 year ago)

Copyright & License

Copyright All data and resources contained within this page and this web site is Copyright © The WPScan Team.
License Some of this data may be used for non-commercial purposes, however, any potential commercial usage of this data will require a license. If you would like to inquire about a commercial license please contact us.