ThreatPress

WordPress Vulnerabilities Database

Back

WordPress MP3 jPlayer Plugin <= 2.3.3 - Full Path Disclosure

Product
MP3 jPlayer
Description
Because of this vulnerability, attackers can disclose path information on wordpress sites.
Solution
Update the plugin.
Classification
Type Full path disclosure (FPD)
OWASP Top 10 A6: Sensitive Data Exposure
References
Vapid
CVE
Name CVE-N/A
Versions
Affected In <= 2.3.3
Fixed In 2.3.4
Disclosure date
2015-08-06
Credits
Larry W. Cashdollar