Boletines de Vulnerabilidades

Arbitrary File Viewing Vulnerability in Candidate Application Form

Información sobre el sistema
   
Software afectado Wordpress

Descripción
https://www.pluginvulnerabilities.com/2017/10/19/arbitrary-file-viewing-vulnerability-in-candidate-application-form/Recently in our monitoring of the WordPress Support Forum we ran across a thread about claiming a vulnerability being exploited in a plugin Candidate Application. The vulnerability being referred to there was actually in another plugin. The slug of the plugin being discussed is wp-candidate-application-form and the vulnerability was for a plugin with the slug

More info:

https://www.pluginvulnerabilities.com/2017/10/19/arbitrary-file-viewing-vulnerability-in-candidate-application-form/

Identificadores estándar
Propiedad Valor
CVE

Histórico de versiones
Versión Comentario Fecha
1.0 Advisory issued 2017-10-20

Miembros de

CERT
FIRST
TF-CSIRT
EGC Group
UE
Red Nacional de SOC
Foro Nacional de Ciberseguridad
CSIRT.es
Ministerio de Defensa
CNI
CCN
CCN-CERT