CVE-2015-4617

State: PUBLISHED · Published: 2019-02-15 · Updated: 2024-08-06 · Assigner: larry_cashdollar

Description

Vulnerability in Easy2map-photos WordPress Plugin v1.09 MapPinImageUpload.php and MapPinIconSave.php allows path traversal when specifying file names creating files outside of the upload directory.

CWE

(none)

Affected

Steven Ellis / Easy2map-photos WordPress Plugin — v=1.09 [affected]

CVSS

(none)

References

https://wordpress.org/plugins/easy2map-photos x_refsource_MISC
http://www.vapidlabs.com/advisory.php?v=130 x_refsource_MISC

Source

cvelistV5-main/cves/2015/4xxx/CVE-2015-4617.json