Notre sélection d'alertes et avis SSI.
Sources : US Cert, Cert EU, Cert FR, Cnil, VulDB.

jeudi 10 octobre 2019

0.7 downloader.php path directory traversal

A vulnerability, which was classified as critical, was found in s3bubble-amazon-s3-html-5-video-with-adverts Plugin 0.7. Affected is some unknown processing of the file adverts/assets/plugins/ultimate/content/downloader.php. There is no information about possible countermeasures known. It may be suggested to replace the affected object with an alternative product.

Lien vers l'article source

Auteur: VulDB

Catégories: VulDBNombre de vues: 134

x

Événements SSI