ThreatPress

WordPress Vulnerabilities Database

Back

WordPress Adaptive Images for WordPress plugin <= 0.6.66 - Local File Inclusion (LFI) vulnerability

Product
Adaptive Images for WordPress
Description
Local File Inclusion (LFI) vulnerability found by Mark Gruffer in WordPress Adaptive Images for WordPress plugin (versions <= 0.6.66).
Solution
Update the WordPress Adaptive Images for WordPress plugin to the latest available version (at least 0.6.67).
Classification
Type Local File Inclusion
OWASP Top 10 A1: Injection
References
Plugin changelog
CVE
Name CVE-2019-14205
Versions
Affected In <= 0.6.66
Fixed In 0.6.67
Disclosure date
2019-07-24
Credits
Mark Gruffer
Submitter
ThreatPress