CVE-2019-25727

Sažetak

WordPress Plugin ad manager wd 1.0.11 contains an arbitrary file download vulnerability that allows unauthenticated attackers to download sensitive files by manipulating the path parameter. Attackers can send GET requests to the edit.php endpoint with export=export_csv and a malicious path parameter to read arbitrary files like wp-config.php accessible to the web server.

Reference

https://web-dorado.com/products/wordpress-ad-manager-wd.html
https://www.exploit-db.com/exploits/46252
https://www.vulncheck.com/advisories/wordpress-plugin-ad-manager-wd-arbitrary-file-download

CVSS

Base:	9.8
Impact:	5.9
Exploitability:	3.9

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
HIGH	HIGH	HIGH

CVSS vektor

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Zadnje važnije ažuriranje

04-06-2026 - 15:00

Objavljeno

04-06-2026 - 14:16