WordPress Plugin Vulnerabilities

Sell Downloads 1.0.1 - Arbitrary File Disclosure

Description

Due to the lack of sanitation of of user input, it is possible to download arbitrary files from site, under the context of the web server. This could lead to disclosure of server configuration, or other sensitive information.

Affects Plugins

Plugin icon
sell-downloads
Fixed in 1.0.2

References

URL
https://g0blin.co.uk/cve-2014-9511/

Classification

Type
LFI
OWASP top 10
A1: Injection
CWE
CWE-22

Miscellaneous

Submitter
James Hooker
Submitter website
https://research.g0blin.co.uk
Submitter twitter
g0blinResearch
Verified
No
WPVDB ID
b714dabb-73c3-44d0-b482-60cf03f417e3

Timeline

Publicly Published
2014-12-29 (about 11 years ago)
Added
2014-12-29 (about 11 years ago)
Last Updated
2019-10-21 (about 6 years ago)

Other

Published
Title
Published
2024-11-12
Title
LUNA RADIO PLAYER < 6.24.11.07 - Unauthenticated Arbitrary File Read
Published
2024-06-05
Title
Cowidgets – Elementor Addons < 1.2.0 - Authenticated (Contributor+) Local File Inclusion
Published
2024-06-20
Title
WishList Member X < 3.26.7 - Authenticated (Subscriber+) Arbitrary File Deletion
Published
2025-08-25
Title
UPC/EAN/GTIN Code Generator < 2.0.3 - Authenticated (Subscriber+) Arbitrary File Deletion
Published
2025-07-01
Title
Vikinger < 1.9.33 - Authenticated (Subscriber+) Arbitrary File Deletion via vikinger_delete_activity_media_ajax Function