Detections
Analytics
WP Online Store Plugin for WordPress Multiple Parameter File Disclosure
medium Nessus Plugin ID 69518
Language:
Synopsis
The remote web server contains a PHP script that is affected by an information disclosure vulnerability.Description
The WP Online Store Plugin for WordPress installed on the remote host is affected by an information disclosure vulnerability due to a failure to properly sanitize user-supplied input to the 'turl' and 'file' parameters. An unauthenticated, remote attacker can exploit this to view arbitrary files by forming a request containing directory traversal sequences.Note that the WP Online Store Plugin is also reportedly affected by a local file inclusion vulnerability; however, Nessus has not tested for this issue.
Solution
WP Online Store Plugin version 1.3.1 was re-released on 1/17/13.Upgrade to the re-released version 1.3.1 or later.
See Also
http://www.nessus.org/u?6060ed31
https://plugins.trac.wordpress.org/changeset/654344/wp-online-store
Plugin Details
Severity: Medium
ID: 69518
File Name: wordpress_wp_online_store_file_disclosure.nasl
Version: 1.11
Type: remote
Family: CGI abuses
Published: 8/30/2013
Updated: 1/19/2021
Supported Sensors: Nessus
Risk Information
CVSS v2
Risk Factor: Medium
Base Score: 5
Temporal Score: 4.1
Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N
CVSS v3
Risk Factor: Medium
Base Score: 5.3
Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Vulnerability Information
CPE: cpe:/a:wordpress:wordpress
Required KB Items: installed_sw/WordPress, www/PHP
Exploit Available: true
Exploit Ease: Exploits are available
Patch Publication Date: 1/17/2013
Vulnerability Publication Date: 2/14/2013
Reference Information
BID: 57963