The Admin Word Count Column WordPress plugin up to and including 2.2 does not validate the path parameter given to readfile(), which could allow unauthenticated malicious users to read arbitrary files on server running old version of PHP susceptible to the null byte technique. This could also lead to RCE by using a Phar Deserialization technique
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
admin word count column project admin word count column |