Ruben Boelinger » Wordtube : Security Vulnerabilities, CVEs, CVSS score >= 5
Directory traversal vulnerability in wordtube-button.php in the wordTube 1.43 and earlier plugin for WordPress, when register_globals is enabled, allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the wpPATH parameter.
Max CVSS
6.8
EPSS Score
0.97%
Published
2007-05-03
Updated
2018-10-16
PHP remote file inclusion vulnerability in wordtube-button.php in the wordTube 1.43 and earlier plugin for WordPress, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the wpPATH parameter.
Max CVSS
6.8
EPSS Score
2.92%
Published
2007-05-03
Updated
2018-10-16
2 vulnerabilities found