ThreatPress

WordPress Vulnerabilities Database

Back

WordPress CodeArt Google MP3 Player Plugin - File Disclosure Download

Product
Google MP3 Player
Description
Because of this file disclosure download vulnerability, the user can download config.php and extract access data DB Data.
Solution
Upgrade the plugin.
Classification
Type Arbitrary File Download
References
Exploit-DB
CVE
Name CVE-N/A
Versions
Affected In <= 1.0.11
Fixed In 1.0.12
Disclosure date
2014-12-03
Credits
QK14 Team