Description
WordPress Plugin Paid Memberships Pro-Restrict Member Access to Content, Courses, Communities-Free or Paid Subscriptions is prone to a directory traversal vulnerability because it fails to sufficiently sanitize user-supplied input. Exploiting this issue can allow an attacker to obtain sensitive information that could aid in further attacks. WordPress Plugin Paid Memberships Pro-Restrict Member Access to Content, Courses, Communities-Free or Paid Subscriptions version 1.7.14.2 is vulnerable; prior versions may also be affected.
Remediation
Update to plugin version 1.7.15 or latest
References
http://security.szurek.pl/paid-memberships-pro-17142-path-traversal.html
http://www.exploit-db.com/exploits/35303/
http://packetstormsecurity.com/files/129189/Paid-Memberships-Pro-1.7.14.2-Path-Traversal.html
http://www.paidmembershipspro.com/2014/11/critical-security-update-pmpro-v1-7-15/
Related Vulnerabilities
WordPress Plugin HashBar-WordPress Notification Bar Cross-Site Scripting (1.3.5)
TYPO3 Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2022-23503)
Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-6112)