W3 Total Cache 0.9.2.6-0.9.3 - Unauthenticated Arbitrary File Read

Affects Plugin

fixed in version 0.9.4

References

CVE 2019-6715
URL https://vinhjaxt.github.io/2019/03/cve-2019-6715

Classification

Type TRAVERSAL
OWASP Top 10 A1: Injection
CWE CWE-22

Miscellaneous

Original Researcher vinhjaxt
Submitter Ryan Dewhurst
Submitter Website https://wpscan.io
Submitter Twitter ethicalhack3r
Views 6595
Verified No
WPVDB ID 9248

Timeline

Publicly Published 2014-09-20 (about 5 years ago)
Added 2019-04-02 (6 months ago)
Last Updated 2019-04-02 (6 months ago)

Our Other Services

Online WordPress Vulnerability Scanner WPScan WordPress Security Plugin