Description

WordPress Plugin WP Online Store is prone to a local file include and multiple file disclosure vulnerabilities because it fails to properly sanitize user-supplied input. An attacker can exploit these issues to execute arbitrary local files within the context of the web server process or to obtain potentially sensitive information from local files which may aid in launching further attacks. WordPress Plugin WP Online Store version 1.3.1 downloaded before 2013.01.17 is vulnerable; prior versions may also be affected.

Remediation

Update to plugin version 1.3.2 or latest

References

http://ceriksen.com/2013/02/18/wordpress-online-store-local-file-inclusion-vulnerability/

http://ceriksen.com/2013/02/18/wordpress-online-store-arbitrary-file-disclosure/

http://secunia.com/advisories/50836/

Related Vulnerabilities

MyBB Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2012-5909)

Drupal Core 7.x Cross-Site Request Forgery (7.0 - 7.71)

Atlassian Jira Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2019-11586)

PrestaShop Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2019-19595)

Apache HTTP Server Numeric Errors Vulnerability (CVE-2011-3607)

Severity

High

Classification

CWE-22 CWE-538 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:N CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N

Tags

Missing Update File Inclusion Information Disclosure