WordPress Plugin Vulnerabilities

Aspose PDF Exporter - Arbitrary File Download

Description

The Aspose.PDF Exporter WordPress plugin was affected by an Arbitrary File Download security vulnerability.

Affects Plugins

Plugin icon
aspose-pdf-exporter
Fixed in 2.0

References

URL
https://packetstormsecurity.com/files/#131161/
URL
https://plugins.trac.wordpress.org/changeset/1127209/aspose-pdf-exporter

Classification

Type
LFI
OWASP top 10
A1: Injection
CWE
CWE-22

Miscellaneous

Submitter
pvdl
Verified
No
WPVDB ID
51dd0b6b-ba90-47e2-ad80-56b3e122bfd4

Timeline

Publicly Published
2015-03-28 (about 11 years ago)
Added
2015-04-01 (about 11 years ago)
Last Updated
2019-11-01 (about 6 years ago)

Other

Published
Title
Published
2019-06-11
Title
Revamp CRM for WooCommerce <= 1.0.3 - LFI
Published
2025-03-19
Title
Age Gate < 3.5.4 - Unauthenticated Local PHP File Inclusion via 'lang'
Published
2025-05-16
Title
Tainacan < 0.21.15 - Unauthenticated Arbitrary File Deletion
Published
2024-03-15
Title
Backuply – Backup, Restore, Migrate and Clone < 1.2.8 - Admin+ Directory Traversal
Published
2014-08-01
Title
WP Custom Pages 0.5.0.1 - LFI