Download Ad Manager by WD - Arbitrary File Download

Affects Plugin

fixed in version 1.0.13

References

EXPLOITDB 46252

Classification

Type TRAVERSAL
OWASP Top 10 A1: Injection
CWE CWE-22

Miscellaneous

Original Researcher 41!kh4224rDz
Submitter Ryan Dewhurst
Submitter Website https://dewhurstsecurity.com/
Submitter Twitter ethicalhack3r
Views 7441
Verified No
WPVDB ID 9212

Timeline

Publicly Published 2019-01-25 (7 months ago)
Added 2019-01-29 (7 months ago)
Last Updated 2019-06-03 (3 months ago)

Our Other Services

Online WordPress Vulnerability Scanner WPScan WordPress Security Plugin