06 Oct 2016

CVE-2015-1000006 Vulnerability

Publié par . Publié dans Directory traversal

Remote file download vulnerability in recent-backups v0.7 wordpress plugin (CVSS:5.0) (Last Update:2016-10-26)

Vulnerability Details :

Remote file download vulnerability in recent-backups v0.7 wordpress plugin
Publish Date : 2016-10-06 Last Update Date : 2016-10-26

CVSS Score	5.0
Confidentiality Impact	Partial(There is considerable informational disclosure.)
Integrity Impact	None(There is no impact to the integrity of the system)
Availability Impact	None(There is no impact to the availability of the system.)
Access Complexity	Low(Specialized access conditions or extenuating circumstances do not exist. Very little knowledge or skill is required to exploit. )
Authentication	Not required(Authentication is not required to exploit the vulnerability.)
Gained Access	None
Vulnerability Type(s)	Directory traversal
CWE ID	22

#	Product Type	Vendor	Product	Version	Update	Edition	Language
1	Application	Recent-backups Project	Recent-backups	0.7		~~~wordpress~~		Version Details Vulnerabilities

Vendor	Product	Vulnerable Versions
Recent-backups Project	Recent-backups	1

There are not any metasploit modules related to this CVE entry (Please visit www.metasploit.com for more information)