Summary
The Cloudsafe365 plugin for WordPress is prone to a file- disclosure vulnerability because it fails to properly sanitize user- supplied input.
An attacker can exploit this vulnerability to view local files in the context of the web server process. This may aid in further attacks.
References
Updated on 2015-03-25
Severity
Classification
-
CVSS Base Score: 6.4
AV:N/AC:L/Au:N/C:P/I:P/A:N
Related Vulnerabilities
- Apache Web Server Configuration File Environment Variable Local Buffer Overflow Vulnerability
- Apache Archiva Home Page Cross-Site Scripting vulnerability
- AMSI 'file' Parameter Directory Traversal Vulnerability
- Apache ActiveMQ 'admin/queueBrowse' Cross Site Scripting Vulnerability
- Andromeda Streaming MP3 Server Cross Site Scripting Vulnerability