The Job Manager plugin before 0.7.25 allows remote attackers to read arbitrary CV files via a brute force attack to the WordPress upload directory structure, related to an insecure direct object reference.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2017-10-19T21:00:00
Updated: 2024-08-06T07:29:24.223Z
Reserved: 2015-08-24T00:00:00
Link: CVE-2015-6668
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2017-10-19T21:29:00.407
Modified: 2017-11-07T13:05:12.963
Link: CVE-2015-6668
Redhat
No data.