Absolute path traversal vulnerability in download.php in the Count Per Day module prior to 3.1.1 for WordPress allows remote malicious users to read arbitrary files via the f parameter.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
count_per_day_project count_per_day 2.16 |
||
count_per_day_project count_per_day 2.15.1 |
||
count_per_day_project count_per_day 2.15 |
||
count_per_day_project count_per_day 2.2 |
||
tom_braider count_per_day |
||
tom_braider count_per_day 1.0 |