Lucene search
Veracode Vulnerability DatabaseVERACODE:13241HistoryJan 16, 2019 - 7:34 a.m.
Directory Traversal
2019-01-1607:34:44
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
3
0.001 Low
EPSS
Percentile
34.6%
woocommerce/woocommerce wordpress plug-in is vulnerable to directory traversal. A lack of validation in the $file parameter in class-wc-log-handler-file.php allows a remote attacker to delete arbitrary files outside of the log directory using the ../ characters. When combined with a design flaw in Wordpress, a remote attacker is able to escalate privileges to Admin by removing the file woocommerce.php, which would consequently allow the attacker to execute arbitrary commands in the system.
| CPE | Name | Operator | Version |
|---|---|---|---|
| woocommerce/woocommerce | le | 3.5.0-rc.1 | |
| woocommerce/woocommerce | le | 3.4.5 |
Related
openvas
openvas
WordPress WooCommerce Plugin < 3.4.6 RCE Vulnerability
2018-11-13 00:00:00
WordPress WooCommerce Plugin RCE Vulnerability - Windows
2018-11-13 00:00:00
cve
cve
CVE-2018-20714
2019-01-15 16:29:00
nvd
nvd
CVE-2018-20714
2019-01-15 16:29:00
wpvulndb
wpvulndb
WooCommerce <= 3.4.5 - Authenticated File Deletion to Privilege Escalation
2018-10-11 00:00:00
prion
prion
Arbitrary file deletion
2019-01-15 16:29:00
cvelist
cvelist
CVE-2018-20714
2019-01-15 16:00:00
osv
osv
CVE-2018-20714
2019-01-15 16:29:00