Font Project: >> Font Security Vulnerabilities
Absolute path traversal vulnerability in Font.php in the Font plugin before 7.5.1 for WordPress allows remote administrators to read arbitrary files via a full pathname in the url parameter to AjaxProxy.php.
CVSS Score
4.0
EPSS Score
0.003
Published
2015-10-16