WordPress Plugin Vulnerabilities

plugin wordTube <= 1.43 - (wpPATH) RFI

Description

The wordtube WordPress plugin was affected by a (wpPATH) RFI security vulnerability.

Affects Plugins

Plugin icon
wordtube
No known fix

References

CVE
CVE-2007-2482
CVE
CVE-2007-2481
Exploitdb
3825

Classification

Type
RFI
OWASP top 10
A1: Injection
CWE
CWE-98

Miscellaneous

Verified
No
WPVDB ID
25a5ba04-05b7-4ad3-a6b5-09876fc6a058

Timeline

Publicly Published
2014-08-01 (about 11 years ago)
Added
2014-08-01 (about 11 years ago)
Last Updated
2019-11-28 (about 6 years ago)

Other

Published
Title
Published
2024-06-14
Title
Video Gallery – YouTube Playlist, Channel Gallery by YotuWP < 1.3.14 - Authenticated (Contributor+) Arbitrary File Inclusion via Shortcode
Published
2025-09-02
Title
Vocal <= 1.12 - Unauthenticated Local File Inclusion
Published
2025-06-25
Title
Samex - Clean, Minimal Shop WooCommerce WordPress Theme <= 2.6 - Unauthenticated Local File Inclusion
Published
2026-02-11
Title
Yokoo <= 1.1.11 - Unauthenticated Local File Inclusion
Published
2025-10-18
Title
Savory < 2.6 - Unauthenticated Local File Inclusion