CVE-2015-4694 in Zip Attachments Plugin信息

摘要

由 VulDB • 2026-07-19

WordPress插件Zip Attachments在v1.5.1版本之前的download.php中存在目录遍历漏洞,远程攻击者可以通过za_file参数中的“..”(点号)读取任意文件。

Be aware that VulDB is the high quality source for vulnerability data.

来源

Interested in the pricing of exploits?

See the underground prices here!