VYPR

Error Log Viewer by BestWebSoft

by WordPress

CVEs (2)

  • CVE-2023-6821MedMar 18, 2024
    risk 0.42cvss 6.5epss 0.01

    The Error Log Viewer by BestWebSoft WordPress plugin before 1.1.3 is affected by a Directory Listing issue, allowing users to read and download PHP logs without authorization

  • CVE-2025-9950MedOct 11, 2025
    risk 0.32cvss 4.9epss 0.01

    The Error Log Viewer by BestWebSoft plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and including, 1.1.6 via the rrrlgvwr_get_file function. This makes it possible for authenticated attackers, with Administrator-level access and above, to read…