Description
WordPress Plugin Paid Memberships Pro-Restrict Member Access to Content, Courses, Communities-Free or Paid Subscriptions is prone to a directory traversal vulnerability because it fails to sufficiently sanitize user-supplied input. Exploiting this issue can allow an attacker to obtain sensitive information that could aid in further attacks. WordPress Plugin Paid Memberships Pro-Restrict Member Access to Content, Courses, Communities-Free or Paid Subscriptions version 1.7.14.2 is vulnerable; prior versions may also be affected.
Remediation
Update to plugin version 1.7.15 or latest
References
http://security.szurek.pl/paid-memberships-pro-17142-path-traversal.html
http://www.exploit-db.com/exploits/35303/
http://packetstormsecurity.com/files/129189/Paid-Memberships-Pro-1.7.14.2-Path-Traversal.html
http://www.paidmembershipspro.com/2014/11/critical-security-update-pmpro-v1-7-15/
Related Vulnerabilities
WordPress Plugin Aspose DOC Exporter Arbitrary File Download (1.0)
ATutor Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2016-2539)
WordPress Plugin Plugin Central Multiple Cross-Site Scripting Vulnerabilities (2.5)
WordPress Plugin ImportWP-Import any XML or CSV File into WordPress Security Bypass (1.1.5)
Apache HTTP Server CVE-2024-40725 Vulnerability (CVE-2024-40725)