ThreatPress

WordPress Vulnerabilities Database

Back

WordPress JM Twitter Cards Plugin <= 6.1 - Full Path Disclosure

Product
JM Twitter Cards
Description
Because of this vulnerability, attackers can discover the full path to the WordPress installation on the server, which they could use to assist in other attacks.
Solution
Update this plugin.
Classification
Type Full path disclosure (FPD)
OWASP Top 10 A6: Sensitive Data Exposure
References
Github
CVE
Name CVE-N/A
Versions
Affected In <= 6.1
Fixed In 6.2
Disclosure date
2015-10-12
Submitter
ThreatPress