ThreatPress

WordPress Vulnerabilities Database

Back

WordPress Javo Spot Premium Theme <= 2.0.0 - Unauthenticated Directory Traversal

Product
Javo Spot
Description
WordPress Javo Spot Premium Theme <= 2.0.0 - Unauthenticated Directory Traversal / Local File Inclusion vulnerability discovered by Soulseekah
Solution
Update theme to the latest version (at least version 2.0.1)
Classification
Type Local File Inclusion
OWASP Top 10 A1: Injection
References
Codeseekah
CVE
Name CVE-N/A
Versions
Affected In <= 2.0.0
Fixed In 2.0.1
Disclosure date
2017-02-10
Credits
soulseekah