ThreatPress

WordPress Vulnerabilities Database

Back

WordPress MyPixs Plugin <= 0.3 - Unauthenticated Local File Inclusion

Product
MyPixs
Description
This plugin is prone to a local file inclusion vulnerability from downloadpage.php.
Solution
Update the plugin.
Classification
Type Local File Inclusion
OWASP Top 10 A1: Injection
References
Vapid
CVE
Name CVE-N/A
Versions
Affected In <= 0.3
Fixed In 0.4
Disclosure date
2015-09-15
Credits
Larry W. Cashdollar