|
Description
|
|
A vulnerability has been reported in the s2Member plugin for WordPress, which can be exploited by malicious people to disclose sensitive information.
Input passed via the "s2member_file_download" parameter to index.php is not properly verified in wp-content/plugins/s2member/includes/classes/files-in.inc.php before being used to read files. This can be exploited to disclose the content of arbitrary files from local resources via directory traversal sequences.
The vulnerability is reported in versions prior to 110812.
|
|
|
|
|
|
Vulnerable Products
|
|
Vulnerable Software:
WordPress s2Member Plugin
|
|
|
|
|
|
Solution
|
|
Update to version 110812 or later.
|
|
|
|
|
|
CVE
|
|
|
|
|
|
|
|
References
|
|
s2Member:
http://wordpress.org/extend/plugins/s2member/changelog/
http://plugins.trac.wordpress.org/changeset/422503/s2member/trunk/includes/classes/files-in.inc.php?old=417783&
old_path=s2member%2Ftrunk%2Fincludes%2Fclasses%2Ffiles-in.inc.php
|
|
|
|
|
|
Vulnerability Manager Detection
|
|
No
|
|
|
|
|
|
IPS Protection
|
|
|
|
|
|
|
