Simple:Press <= 6.8 - Authenticated (Admin+) Path Traversal to Arbitrary File Modification

The Simple:Press plugin for WordPress is vulnerable to arbitrary file modifications in versions up to, and including, 6.8 via the 'file' parameter which does not properly restrict files to be edited in the context of the plugin. This makes it possible with attackers, with high-level permissions such as an administrator, to supply paths to arbitrary files on the server that can be modified outside of the intended scope of the plugin.

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:L

对路径名的限制不恰当(路径遍历)

WordPress plugin Simple:Press 路径遍历漏洞

WordPress和WordPress plugin都是WordPress基金会的产品。WordPress是一套使用PHP语言开发的博客平台。该平台支持在PHP和MySQL的服务器上架设个人博客网站。WordPress plugin是一个应用插件。 WordPress plugin Simple:Press 存在安全漏洞，该漏洞源于通过“file”参数可以进行任意文件修改，该参数未正确限制要在插件上下文中编辑的文件。

N/A

N/A