The User Meta WordPress plugin prior to 2.4.4 does not validate the filepath parameter of its um_show_uploaded_file AJAX action, which could allow low privileged users such as subscriber to enumerate the local files on the web server via path traversal payloads
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
user-meta user meta user profile builder and user management |