CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Zip Attachments Project: Security Vulnerabilities

CVE-2015-4694

Directory traversal vulnerability in download.php in the Zip Attachments plugin before 1.5.1 for WordPress allows remote attackers to read arbitrary files via a .. (dot dot) in the za_file parameter.

CVSS Score

8.6

EPSS Score

0.351

Published

2016-01-08

Page 1

Vulnerabilities

Vulnerable Software

Zip Attachments Project: Security Vulnerabilities

Products

Pricing

Contact Us