ThreatPress

WordPress Vulnerability Database

Back

WordPress WP-Lister for eBay plugin <= 2.0.20 - Unauthenticated Path Traversal vulnerability

Product
WP-Lister for eBay
Description
Unauthenticated Path Traversal vulnerability found in WordPress WP-Lister for eBay plugin (versions <= 2.0.20).
Solution
Update the WordPress WP-Lister for eBay plugin to the latest available version (at least 2.0.21)
Classification
Type Directory Traversal
OWASP Top 10 A9: Using Components with Known Vulnerabilities
References
Vulnerability details
Plugin changelog
CVE
Name CVE-2017-1000170 (CVE for vulnerable component)
Versions
Affected In <= 2.0.20
Fixed In 2.0.21
Disclosure date
2020-10-20