CVE-2015-6668 Title: CV filename disclosure on Job-Manager WP Plugin
The Job Manager plugin prior to 0.7.25 allows remote malicious users to read arbitrary CV files via a brute force attack to the WordPress upload directory structure, related to an insecure direct object reference.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
wp-jobmanager job manager |