Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
WordPress Plugin WP e-Commerce Shop Styling Arbitrary File Download - CVE-2015-5468 - Vulnerability Database
WP Plugin Wp Ecommerce Shop Styling

WordPress Plugin WP e-Commerce Shop Styling Arbitrary File Download - CVE-2015-5468

Medium
Reference: CVE-2015-5468
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2015-5468
Title: WordPress Plugin WP e-Commerce Shop Styling Arbitrary File Download
Overview:

WordPress Plugin WP e-Commerce Shop Styling is prone to a vulnerability that lets attackers download arbitrary files because the application fails to sufficiently verify user-supplied input. This may allow an attacker to gain access to sensitive information which may aid in launching further attacks. WordPress Plugin WP e-Commerce Shop Styling version 2.5 is vulnerable prior versions may also be affected.