SEO Tools Plugin for WordPress Directory Traversal Vulnerability

vendor:

SEO Tools Plugin

by:

Unknown

4.3

CVSS

MEDIUM

Directory Traversal

CWE

Product Name: SEO Tools Plugin

Affected Version From: 3

Affected Version To: Unknown

Patch Exists: NO

Related CWE:

CPE: a:wordpress:seo_tools:3.0

Metasploit:

Other Scripts:

Platforms Tested: WordPress

Unknown

SEO Tools Plugin for WordPress Directory Traversal Vulnerability

The SEO Tools plugin for WordPress is prone to a directory-traversal vulnerability because it fails to sufficiently sanitize user-supplied input. Exploiting this issue can allow an attacker to obtain sensitive information that could aid in further attacks.

Mitigation:

Update to the latest version of the SEO Tools plugin for WordPress. Verify that input is properly sanitized and validate user-supplied input to prevent directory traversal attacks.

Source

SEO Tools Plugin for WordPress Directory Traversal Vulnerability

Mitigation:

Exploit-DB raw data: