Unrated severityNVD Advisory· Published Aug 22, 2014· Updated Jun 17, 2026
CVE-2014-5368
CVE-2014-5368
Description
Directory traversal vulnerability in the file_get_contents function in downloadfiles/download.php in the WP Content Source Control (wp-source-control) plugin 3.0.0 and earlier for WordPress allows remote attackers to read arbitrary files via a .. (dot dot) in the path parameter.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- cpe:2.3:a:wp_content_source_control_project:wp_content_source_control:*:*:*:*:*:wordpress:*:*Range: <=3.0.0
- Range: <=3.0.0
Patches
Vulnerability mechanics
References
4News mentions
0No linked articles in our index yet.