CVE

Id
59894  
CVE No.
CVE-2012-6651  
Status
Candidate  
Description
Multiple directory traversal vulnerabilities in the Vitamin plugin before 1.1.0 for WordPress allow remote attackers to access arbitrary files via a .. (dot dot) in the path parameter to (1) add_headers.php or (2) minify.php.  
Phase
Assigned (20140728)  
Votes
None (candidate not yet proposed)  
Comments
 

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
606125 59894 CVE-2012-6651 MLIST:[oss-security] 20140724 CVE request: WordPress plugin vitamin traversal arbitrary file access  View
606126 59894 CVE-2012-6651 URL:http://www.openwall.com/lists/oss-security/2014/07/24/6  View
606127 59894 CVE-2012-6651 MLIST:[oss-security] 20140728 Re: CVE request: WordPress plugin vitamin traversal arbitrary file access  View
606128 59894 CVE-2012-6651 URL:http://www.openwall.com/lists/oss-security/2014/07/28/3  View
606129 59894 CVE-2012-6651 CONFIRM:http://wordpress.org/plugins/vitamin/changelog/  View
606130 59894 CVE-2012-6651 CONFIRM:https://plugins.trac.wordpress.org/changeset/582232  View
606131 59894 CVE-2012-6651 BID:54856  View

Related JVN

Id JVN No. Title Summary CVE No. CVE Id CVSS_v2 CVSS_v3 JVN URL Actions
30622 JVNDB-2012-006330 GNU C Library の iconvdata/ibm930.c におけるサービス運用妨害 (DoS) の脆弱性 GNU C Library (別名 glibc) の iconvdata/ibm930.c には、サービス運用妨害 (out-of-bounds read) 状態にされる脆弱性が存在します。 CVE-2012-6656 59894 5 http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-006330.html  View