ThreatPress

WordPress Vulnerabilities Database

Back

WordPress Online Store Plugin <= 1.3.1 - Local File Inclusion

Product
Online Store
Description
This plugin is prone to an index.php slug parameter traversal local file inclusion vulnerability.
Solution
Update the plugin.
Classification
Type Local File Inclusion
OWASP Top 10 A1: Injection
References
Secunia
CVE
Name CVE-N/A
Versions
Affected In <= 1.3.1
Fixed In 1.3.2
Disclosure date
2015-05-15