Acunetix DAST powers runtime capabilities for Invicti’s complete AppSec platform. Visit Invicti for more.

WEB APPLICATION VULNERABILITIES Standard & Premium

WordPress Plugin W3 Total Cache Arbitrary File Disclosure (0.9.3)

Description

WordPress Plugin W3 Total Cache is prone to an arbitrary file disclosure vulnerability because it fails to properly verify user-supplied input. An attacker can exploit this vulnerability to view local files in the context of the web server process, which may aid in launching further attacks. WordPress Plugin W3 Total Cache version 0.9.3 is vulnerable; prior versions may also be affected.

Remediation

Update to plugin version 0.9.4 or latest

References

https://vinhjaxt.github.io/2019/03/cve-2019-6715

https://www.exploit-db.com/exploits/49317

https://packetstormsecurity.com/files/160674/WordPress-W3-Total-Cache-0.9.3-File-Read-Directory-Traversal.html

Related Vulnerabilities

WordPress Plugin Email Before Download SQL Injection (3.6)

Oracle Database Server Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2007-5507)

WordPress Plugin Easy Gallery Slideshow Cross-Site Scripting (1.1)

PHP Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') Vulnerability (CVE-2015-8878)

WordPress Plugin Google Doc Embedder Multiple Vulnerabilities (2.6.1)

Severity

High

Classification

CVE-2019-6715 CWE-538 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:N CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N

Tags

Missing Update Information Disclosure