VYPR

Ajax Pagination Twitter Style

by WordPress

CVEs (1)

  • CVE-2014-2674HigMar 19, 2018
    risk 0.53cvss 7.5epss 0.16

    Directory traversal vulnerability in the Ajax Pagination (twitter Style) plugin 1.1 for WordPress allows remote attackers to read arbitrary files via a .. (dot dot) in the loop parameter in an ajax_navigation action to wp-admin/admin-ajax.php.