ThreatPress

WordPress Vulnerabilities Database

Back

WordPress AntiVirus Plugin <= 1.0 - Full Path Disclosure

Product
AntiVirus
Description
This plugin is prone to an uninstall.php direct request path disclosure vulnerability.
Solution
Upgrade this plugin.
Classification
Type Full path disclosure (FPD)
OWASP Top 10 A6: Sensitive Data Exposure
References
SecLists
Packet Storm Security
CVE
Name CVE-N/A
Versions
Affected In <= 1.0
Fixed In 1.1
Disclosure date
2015-05-15
Credits
MustLive