Directory traversal vulnerability in the AJAX function of Ultimate Member plugin prior to version 2.0.4 for WordPress allows remote attackers to read arbitrary files via unspecified vectors.
CPE | Name | Operator | Version |
---|---|---|---|
user_profile_\\&_membership | lt | 2.0.4 |