Vulnerabilities (CVE)

Filtered by vendor Cross-rss Plugin Project Subscribe
Filtered by product Wp-cross-rss
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2014-4941 1 Cross-rss Plugin Project 1 Wp-cross-rss 2024-11-21 5.0 MEDIUM N/A
Absolute path traversal vulnerability in Cross-RSS (wp-cross-rss) plugin 1.7 for WordPress allows remote attackers to read arbitrary files via a full pathname in the rss parameter to proxy.php.