ThreatPress

WordPress Vulnerabilities Database

Back

WordPress myEASYbackup Plugin <= 1.0.8.1 - Directory Traversal

Product
myEASYbackup
Description
Because of this vulnerability in meb_download.php, the attackers can read arbitrary files in the "dwn_file" parameter.
Solution
Update the plugin.
Classification
Type Information Disclosure
References
CVE Mitre
CVE
Name CVE-2012-0898
Versions
Affected In <= 1.0.8.1
Fixed In 1.0.8.2
Disclosure date
2012-01-20