Description
Directory traversal vulnerability in meb_download.php in the myEASYbackup plugin 1.0.8.1 for WordPress allows remote attackers to read arbitrary files via a .. (dot dot) in the dwn_file parameter.
References (3)
Core 3
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/72404
Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/47594
Exploit x_refsource_misc
http://packetstormsecurity.org/files/view/108711/wpmyeasybackup-traversal.txt
Scores
EPSS
0.0309
EPSS Percentile
86.1%
Details
CWE
CWE-22
Status
published
Products (1)
camaleo/myeasybackup
1.0.8.1
Published
Jan 20, 2012
Tracked Since
Feb 18, 2026