Shodan
Vulnerabilities
Vulnerable Software
Strangerstudios:  >> Paid Memberships Pro  >> 1.2.5  Security Vulnerabilities
CVE-2014-8801
Directory traversal vulnerability in services/getfile.php in the Paid Memberships Pro plugin before 1.7.15 for WordPress allows remote attackers to read arbitrary files via a .. (dot dot) in the QUERY_STRING in a getfile action to wp-admin/admin-ajax.php.
CVSS Score
5.0
EPSS Score
0.305
Published
2014-11-28


Products
Pricing
Contact Us

Shodan ® - All rights reserved