Security Advisory

CVE-2015-7683

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2015-10-16 20:00:00

Last updated 2024-08-06 07:58:59

Assigner mitre

State PUBLISHED

Description

Absolute path traversal vulnerability in Font.php in the Font plugin before 7.5.1 for WordPress allows remote administrators to read arbitrary files via a full pathname in the url parameter to AjaxProxy.php.

← Browse all CVEs View on cve.org ↗