Vulnerability Details CVE-2019-6715
pub/sns.php in the W3 Total Cache plugin before 0.9.4 for WordPress allows remote attackers to read arbitrary files via the SubscribeURL field in SubscriptionConfirmation JSON data.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.194
EPSS Ranking 97.0%
CVSS Severity
CVSS v3 Score 7.5
CVSS v2 Score 5.0
References
- http://packetstormsecurity.com/files/160674/WordPress-W3-Total-Cache-0.9.3-File-Read-Directory-Traversal.html
- https://vinhjaxt.github.io/2019/03/cve-2019-6715
- http://packetstormsecurity.com/files/160674/WordPress-W3-Total-Cache-0.9.3-File-Read-Directory-Traversal.html
- https://vinhjaxt.github.io/2019/03/cve-2019-6715
Products affected by CVE-2019-6715
-
cpe:2.3:a:boldgrid:w3_total_cache:-
-
cpe:2.3:a:boldgrid:w3_total_cache:0.5
-
cpe:2.3:a:boldgrid:w3_total_cache:0.6
-
cpe:2.3:a:boldgrid:w3_total_cache:0.7
-
cpe:2.3:a:boldgrid:w3_total_cache:0.7.5
-
cpe:2.3:a:boldgrid:w3_total_cache:0.7.5.1
-
cpe:2.3:a:boldgrid:w3_total_cache:0.7.5.2
-
cpe:2.3:a:boldgrid:w3_total_cache:0.8
-
cpe:2.3:a:boldgrid:w3_total_cache:0.8.5
-
cpe:2.3:a:boldgrid:w3_total_cache:0.8.5.1
-
cpe:2.3:a:boldgrid:w3_total_cache:0.8.5.2
-
cpe:2.3:a:boldgrid:w3_total_cache:0.9.0
-
cpe:2.3:a:boldgrid:w3_total_cache:0.9.1
-
cpe:2.3:a:boldgrid:w3_total_cache:0.9.1.1
-
cpe:2.3:a:boldgrid:w3_total_cache:0.9.1.2
-
cpe:2.3:a:boldgrid:w3_total_cache:0.9.1.3
-
cpe:2.3:a:boldgrid:w3_total_cache:0.9.2
-
cpe:2.3:a:boldgrid:w3_total_cache:0.9.2.1
-
cpe:2.3:a:boldgrid:w3_total_cache:0.9.2.2
-
cpe:2.3:a:boldgrid:w3_total_cache:0.9.2.3
-
cpe:2.3:a:boldgrid:w3_total_cache:0.9.2.4
-
cpe:2.3:a:boldgrid:w3_total_cache:0.9.2.5
-
cpe:2.3:a:boldgrid:w3_total_cache:0.9.2.6
-
cpe:2.3:a:boldgrid:w3_total_cache:0.9.2.7
-
cpe:2.3:a:boldgrid:w3_total_cache:0.9.2.8
-
cpe:2.3:a:boldgrid:w3_total_cache:0.9.3