RSS   Vulnerabilities for 'Wp-cross-rss'   RSS

2014-07-11
 
CVE-2014-4941

CWE-22
 

 
Absolute path traversal vulnerability in Cross-RSS (wp-cross-rss) plugin 1.7 for WordPress allows remote attackers to read arbitrary files via a full pathname in the rss parameter to proxy.php.

 


Copyright 2024, cxsecurity.com

 

Back to Top