ThreatPress

WordPress Vulnerabilities Database

Back

WordPress AllWebMenus Plugin 1.1.3 - Remote File Inclusion

Product
AllWebMenus
Description
AllWebMenus plugin is prone to remote file include vulnerability. It allows an attacker to include a remote file and get access to the server.
Solution
Update the plugin.
Classification
Type Remote File Inclusion
References
Exploit-DB
CVE
Name CVE-2011-3981
Versions
Affected In 1.1.3
Fixed In 1.1.4
Disclosure date
2011-09-19
Credits
Ben Schmidt