WordPress Plugin ZoomSounds-WordPress Wave Audio Player with Playlist Directory Traversal - CVE-2021-39316 - Vulnerability Database

WordPress Plugin ZoomSounds-WordPress Wave Audio Player with Playlist Directory Traversal - CVE-2021-39316

High
Reference: CVE-2021-39316
Title: WordPress Plugin ZoomSounds-WordPress Wave Audio Player with Playlist Directory Traversal
Overview:

WordPress Plugin ZoomSounds-WordPress Wave Audio Player with Playlist is prone to a directory traversal vulnerability because it fails to sufficiently verify user-supplied input. Exploiting this issue can allow an attacker to obtain sensitive information that could aid in further attacks. WordPress Plugin ZoomSounds-WordPress Wave Audio Player with Playlist version 6.45 is vulnerable prior versions may also be affected.