High severity7.5NVD Advisory· Published May 23, 2017· Updated Jun 17, 2026
CVE-2015-5469
CVE-2015-5469
Description
Absolute path traversal vulnerability in the MDC YouTube Downloader plugin 2.1.0 for WordPress allows remote attackers to read arbitrary files via a full pathname in the file parameter to includes/download.php.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3= 2.1.0+ 1 more
- (no CPE)range: = 2.1.0
- (no CPE)range: <=2.1.0
- cpe:2.3:a:mdc_youtube_downloader_project:mdc_youtube_downloader:2.1.0:*:*:*:*:wordpress:*:*
Patches
Vulnerability mechanics
References
3- www.openwall.com/lists/oss-security/2015/07/07/1nvdExploitMailing ListThird Party Advisory
- www.vapid.dhs.org/advisory.phpnvdExploitThird Party Advisory
- www.openwall.com/lists/oss-security/2015/07/10/5nvdMailing ListThird Party Advisory
News mentions
0No linked articles in our index yet.