Vulnerability Details CVE-2019-15822
The wps-child-theme-generator plugin before 1.2 for WordPress has classes/helpers.php directory traversal.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.018
EPSS Ranking 81.8%
CVSS Severity
CVSS v3 Score 9.8
CVSS v2 Score 7.5
References
- https://secupress.me/blog/wps-child-theme-generator-v1-1-multiples-vulnerabilities/
- https://wordpress.org/plugins/wps-child-theme-generator/#developers
- https://wpvulndb.com/vulnerabilities/9470
- https://secupress.me/blog/wps-child-theme-generator-v1-1-multiples-vulnerabilities/
- https://wordpress.org/plugins/wps-child-theme-generator/#developers
- https://wpvulndb.com/vulnerabilities/9470
Products affected by CVE-2019-15822
-
cpe:2.3:a:wpserveur:wps_child_theme_generator:-
-
cpe:2.3:a:wpserveur:wps_child_theme_generator:1.0
-
cpe:2.3:a:wpserveur:wps_child_theme_generator:1.1