WordPress Plugin Vulnerabilities

WP Background Takeover <= 4.1.4 - Directory Traversal

Description

Allows for an attacker to browse files via the download.php file

Proof of Concept

Affects Plugins

Plugin icon
background-takeover
Fixed in 4.1.5

References

CVE
CVE-2018-9118
URL
https://99robots.com/products/wp-background-takeover-advertisements/
URL
https://99robots.com/docs/wp-background-takeover-advertisements/

Classification

Type
LFI
OWASP top 10
A1: Injection
CWE
CWE-22
CVSS
7.5 (high)

Miscellaneous

Submitter
Colette Chamberland
Submitter website
https://www.defiant.com
Submitter twitter
@cjchamberland
Verified
No
WPVDB ID
683b161b-41bc-4ac1-97b3-347fcebeef52

Timeline

Publicly Published
2018-04-06 (about 8 years ago)
Added
2018-04-09 (about 8 years ago)
Last Updated
2020-09-22 (about 5 years ago)

Other

Published
Title
Published
2026-03-20
Title
Spam Protect for Contact Form 7 < 1.2.10 - Authenticated (Editor+) Arbitrary File Deletion
Published
2024-07-08
Title
Ultimate Classified Listings < 1.3 - Unauthenticated LFI
Published
2024-06-05
Title
Startklar Elementor Addons <= 1.7.15 - Unauthenticated Path Traversal to Arbitrary Directory Deletion
Published
2016-03-23
Title
Brandfolder <= 3.0 - File Inclusion
Published
2025-09-12
Title
The Hack Repair Guy's Plugin Archiver < 3.1.1 - Authenticated (Administrator+) Arbitrary File Deletion