0.178 Low
EPSS
Percentile
96.2%
This vulnerability is in the “dp_img_resize” function in php/dp-functions.php. It allows the attackers to read arbitrary files in the “src” parameter to lib/dp_image.php.
Update the plugin.
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8799