WordPress Plugin Vulnerabilities

Tom M8te (tom-m8te) Plugin 1.5.3 - Directory Traversal

Description

The tom-m8te WordPress plugin was affected by a Directory Traversal security vulnerability.

Affects Plugins

Plugin icon
tom-m8te
No known fix

References

CVE
CVE-2014-5187
URL
https://codevigilant.com/disclosure/wp-plugin-tom-m8te-local-file-inclusion/

Classification

Type
LFI
OWASP top 10
A1: Injection
CWE
CWE-22

Miscellaneous

Submitter
ethicalhack3r
Submitter twitter
ethicalhack3r
Verified
No
WPVDB ID
3095c3f3-9cdc-49f8-8478-c2922f0a442a

Timeline

Publicly Published
2014-09-27 (about 9 years ago)
Added
2014-09-27 (about 9 years ago)
Last Updated
2019-10-21 (about 4 years ago)

Other

Published
Title
Published
2019-06-19
Title
Sina Extension For Elementor <= 2.2.0 - LFI
Published
2014-08-01
Title
Lytebox - Local File Inclusion
Published
2015-03-03
Title
Authentic Theme - Arbitrary File Download
Published
2014-08-01
Title
Myflash - myextractXML.php path Parameter Arbitrary File Access
Published
2021-04-05
Title
Tutor LMS < 1.8.8 - Authenticated Local File Inclusion