Multiple directory traversal vulnerabilities in plugins/wp-db-backup.php in WordPress prior to 2.0.5 allow remote authenticated users to read or overwrite arbitrary files via directory traversal sequences in the (1) backup and (2) fragment parameters in a GET request.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
wordpress wordpress 2.0.2 |
||
wordpress wordpress 2.0.3 |
||
wordpress wordpress |