PT-2019-7429 · WordPress · History-Collection Plugin

Published

2019-10-10

Updated

2019-10-16

CVE-2015-9470

CVSS v2.0

5.0

Medium

Vector

AV:N/AC:L/Au:N/C:P/I:N/A:N

Name of the Vulnerable Software and Affected Versions history-collection plugin versions through 1.1.1 for WordPress

Description The issue concerns directory traversal via the var parameter in the download.php endpoint. This allows unauthorized access to sensitive files and directories.

Recommendations For history-collection plugin versions through 1.1.1, consider disabling the download.php endpoint until a patch is available. Restrict access to the var parameter in the download.php endpoint to minimize the risk of exploitation.

Exploit

Fix

Path traversal

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-22

Related Identifiers

CVE-2015-9470

Affected Products

History-Collection Plugin

PT-2019-7429 · WordPress · History-Collection Plugin

CVE-2015-9470

Weakness Enumeration

Related Identifiers

Affected Products

References · 6