ThreatPress

WordPress Vulnerabilities Database

Back

WordPress Health Check & Troubleshooting plugin <= 1.2.3 - Authenticated Path Traversal vulnerability

Product
Health Check & Troubleshooting
Description
Authenticated Path Traversal vulnerability found by Julien Legras in WordPress Health Check & Troubleshooting plugin (versions <= 1.2.3).
Solution
Update the WordPress Health Check & Troubleshooting plugin to the latest available version (at least 1.2.4).
Classification
Type Directory Traversal
OWASP Top 10 A4: Insecure Direct Object References
References
Plugin changelog
CVE
Name CVE-N/A
Versions
Affected In <= 1.2.3
Fixed In 1.2.4
Disclosure date
2019-01-28
Credits
Julien Legras
Submitter
ThreatPress