Absolute Path Traversal Vulnerability in MDC YouTube Downloader Plugin 2.1.0 for WordPress

CVE-2015-5469 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

Absolute path traversal vulnerability in the MDC YouTube Downloader plugin 2.1.0 for WordPress allows remote attackers to read arbitrary files via a full pathname in the file parameter to includes/download.php.

Learn more about our Wordpress Pen Testing.