26 Juil 2017
CVE-2017-11658 - CVE Vulnerability
In the WP Rocket plugin 2.9.3 for WordPress, the Local File Inclusion mitigation technique is to trim traversal characters (..) -- however, this is insufficient to stop remote attacks and can be bypassed by using 0x00 bytes, as demonstrated by a .%00.../.%00.../ attack. (CVSS:0.0) (Last Update:2017-07-26)
Vulnerability Details : In the WP Rocket plugin 2.9.3 for WordPress, the Local File Inclusion mitigation technique is to trim traversal characters (..) -- however, this is insufficient to stop remote attacks and can be bypassed by using 0x00 bytes, as demonstrated by a .%00.../.%00.../ attack. Publish Date : 2017-07-26 Last Update Date : 2017-07-26 - CVSS Scores & Vulnerability Types
- Products Affected By CVE-2017-11658
- References For CVE-2017-11658
| |||||||||||||||||||||||||||||||||||||||||||||||
- Metasploit Modules Related To CVE-2017-11658There are not any metasploit modules related to this CVE entry (Please visit www.metasploit.com for more information) |