Directory Traversal Vulnerability in Ultimate Member Plugin for WordPress (Versions prior to 2.0.4)

Directory Traversal Vulnerability in Ultimate Member Plugin for WordPress (Versions prior to 2.0.4)

CVE-2018-0588 · MEDIUM Severity

AV:N/AC:L/AU:N/C:N/I:P/A:P

Directory traversal vulnerability in the AJAX function of Ultimate Member plugin prior to version 2.0.4 for WordPress allows remote attackers to read arbitrary files via unspecified vectors.

Learn more about our Wordpress Pen Testing.