WordPress Plugin Cross-RSS Directory Traversal - CVE-2014-4941 - Vulnerability Database

WordPress Plugin Cross-RSS Directory Traversal - CVE-2014-4941

Medium

Reference: CVE-2014-4941

NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2014-4941

Title: WordPress Plugin Cross-RSS Directory Traversal

Overview:

WordPress Plugin Cross-RSS is prone to a directory traversal vulnerability because it fails to sufficiently sanitize user-supplied input. Exploiting this issue can allow an attacker to obtain sensitive information that could aid in further attacks. WordPress Plugin Cross-RSS version 1.7 is vulnerable prior versions may also be affected.