High severity7.5NVD Advisory· Published Jul 21, 2019· Updated Jun 17, 2026
CVE-2019-14205
CVE-2019-14205
Description
A Local File Inclusion vulnerability in the Nevma Adaptive Images plugin before 0.6.67 for WordPress allows remote attackers to retrieve arbitrary files via the $REQUEST['adaptive-images-settings']['source_file'] parameter in adaptive-images-script.php.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3- Nevma/Adaptive Imagesdescription
- Range: <0.6.67
- Range: <0.6.67
Patches
Vulnerability mechanics
References
4- github.com/markgruffer/markgruffer.github.io/blob/master/_posts/2019-07-19-adaptive-images-for-wordpress-0-6-66-lfi-rce-file-deletion.markdownnvdExploitThird Party Advisory
- markgruffer.github.io/2019/07/19/adaptive-images-for-wordpress-0-6-66-lfi-rce-file-deletion.htmlnvdExploitThird Party Advisory
- wpvulndb.com/vulnerabilities/9468nvdExploitThird Party Advisory
- wordpress.org/plugins/adaptive-images/nvdRelease NotesThird Party Advisory
News mentions
0No linked articles in our index yet.