WordPress Plugin Vulnerabilities

WP Custom Pages 0.5.0.1 - LFI

Description

The wp-custom-pages WordPress plugin was affected by a LFI security vulnerability.

Affects Plugins

Plugin icon
wp-custom-pages
No known fix

References

CVE
CVE-2011-1669
Exploitdb
17119

Classification

Type
LFI
OWASP top 10
A1: Injection
CWE
CWE-22

Miscellaneous

Verified
No
WPVDB ID
6563875f-5231-4f19-90db-275cdbab8584

Timeline

Publicly Published
2014-08-01 (about 11 years ago)
Added
2014-08-01 (about 11 years ago)
Last Updated
2019-11-28 (about 6 years ago)

Other

Published
Title
Published
2024-11-11
Title
DigiPass <= 0.3.0 - Unauthenticated Arbitrary File Download
Published
2023-11-27
Title
so-widgets-bundle < 1.51.0 - Admin+ Local File Inclusion
Published
2016-07-13
Title
WP Fastest Cache <= 0.8.5.9 - Local File Inclusion (LFI)
Published
2017-09-20
Title
WordPress 3.0-4.8.1 - Path Traversal in Unzipping
Published
2026-01-13
Title
Hostme v2 <= 7.0 - Unauthenticated Arbitrary File Deletion