Description
WordPress Plugin Paid Memberships Pro-Restrict Member Access to Content, Courses, Communities-Free or Paid Subscriptions is prone to a directory traversal vulnerability because it fails to sufficiently sanitize user-supplied input. Exploiting this issue can allow an attacker to obtain sensitive information that could aid in further attacks. WordPress Plugin Paid Memberships Pro-Restrict Member Access to Content, Courses, Communities-Free or Paid Subscriptions version 1.7.14.2 is vulnerable; prior versions may also be affected.
Remediation
Update to plugin version 1.7.15 or latest
References
http://security.szurek.pl/paid-memberships-pro-17142-path-traversal.html
http://www.exploit-db.com/exploits/35303/
http://packetstormsecurity.com/files/129189/Paid-Memberships-Pro-1.7.14.2-Path-Traversal.html
http://www.paidmembershipspro.com/2014/11/critical-security-update-pmpro-v1-7-15/
Related Vulnerabilities
Drupal Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2022-25277)
WordPress Plugin Easy Updates Manager Privilege Escalation (8.0.4)
WordPress Plugin iThemes Exchange:Simple WP Ecommerce Remote Code Execution (1.14.0)
b2evolution URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2020-22840)
Oracle Database Server CVE-2014-6560 Vulnerability (CVE-2014-6560)