Description
WordPress Plugin Paid Memberships Pro-Restrict Member Access to Content, Courses, Communities-Free or Paid Subscriptions is prone to a directory traversal vulnerability because it fails to sufficiently sanitize user-supplied input. Exploiting this issue can allow an attacker to obtain sensitive information that could aid in further attacks. WordPress Plugin Paid Memberships Pro-Restrict Member Access to Content, Courses, Communities-Free or Paid Subscriptions version 1.7.14.2 is vulnerable; prior versions may also be affected.
Remediation
Update to plugin version 1.7.15 or latest
References
http://security.szurek.pl/paid-memberships-pro-17142-path-traversal.html
http://www.exploit-db.com/exploits/35303/
http://packetstormsecurity.com/files/129189/Paid-Memberships-Pro-1.7.14.2-Path-Traversal.html
http://www.paidmembershipspro.com/2014/11/critical-security-update-pmpro-v1-7-15/
Related Vulnerabilities
WordPress Plugin Google Analytics by BestWebSoft Cross-Site Scripting (1.7.0)
WordPress Plugin Gutenberg Blocks by WordPress Download Manager Cross-Site Scripting (2.1.8)
Drupal Improper Access Control Vulnerability (CVE-2016-5385)
WebLogic Improper Check for Unusual or Exceptional Conditions Vulnerability (CVE-2021-27568)
TYPO3 Deserialization of Untrusted Data Vulnerability (CVE-2019-12747)