Jsmol2wp Project - Jsmol2wp CVE

Filtered by vendor Jsmol2wp Project Subscribe

Filtered by product Jsmol2wp

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Total 1 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2018-20463	1 Jsmol2wp Project	1 Jsmol2wp	2019-01-09	5.0 MEDIUM	7.5 HIGH
An issue was discovered in the JSmol2WP plugin 1.07 for WordPress. There is an arbitrary file read vulnerability via ../ directory traversal in query=php://filter/resource= in the jsmol.php query string. This can also be used for SSRF.

Vulnerabilities (CVE)