Unrated severityNVD Advisory· Published Jan 3, 2022· Updated Aug 3, 2024
OMGF < 4.5.12 - Admin+ Arbitrary Folder Deletion via Path Traversal
CVE-2021-25021
Description
The OMGF | Host Google Fonts Locally WordPress plugin before 4.5.12 does not validate the cache directory setting, allowing high privilege users to use a path traversal vector and delete arbitrary folders when uninstalling the plugin
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- WordPress/OMGF | Host Google Fonts Locallydescription
Patches
Vulnerability mechanics
References
1- wpscan.com/vulnerability/92db763c-ca6b-43cf-87ff-c1678cf4ade5mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.