CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2015-9463

The s3bubble-amazon-s3-audio-streaming plugin 2.0 for WordPress has directory traversal via the adverts/assets/plugins/ultimate/content/downloader.php path parameter.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.065

EPSS Ranking 90.6%

CVSS Severity

CVSS v3 Score 7.5

CVSS v2 Score 5.0

References

http://packetstormsecurity.com/files/132578/
https://wordpress.org/plugins/s3bubble-amazon-s3-audio-streaming/#developers
http://packetstormsecurity.com/files/132578/
https://wordpress.org/plugins/s3bubble-amazon-s3-audio-streaming/#developers

Products affected by CVE-2015-9463

S3bubble » S3bubble-Amazon-S3-Audio-Streaming » Version: 2.0

cpe:2.3:a:s3bubble:s3bubble-amazon-s3-audio-streaming:2.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2015-9463

Products

Pricing

Contact Us