CVE-2021-39316

HIGH EXPLOITED NUCLEI

Zoomsounds <= 6.45 - Unauthenticated Arbitrary File Read via dzsap_download Action

Title source: llm

Exploitation Summary

CVE-2021-39316 has been observed exploited in the wild (reported by VulnCheck KEV). EIP tracks 1 public exploit from researchers including Uriel Yochpaz. A Nuclei detection template is also available.

AI-analyzed exploit summary This exploit demonstrates an unauthenticated arbitrary file read vulnerability in WordPress Plugin DZS Zoomsounds via directory traversal in the 'link' parameter of the 'dzsap_download' action. The PoC uses a crafted HTTP request to read '/etc/passwd'.

Description

The Zoomsounds plugin <= 6.45 for WordPress allows arbitrary files, including sensitive configuration files such as wp-config.php, to be downloaded via the `dzsap_download` action using directory traversal in the `link` parameter.

Exploits (1)

exploitdb WORKING POC

by Uriel Yochpaz · textwebappsphp

https://www.exploit-db.com/exploits/50564

View Code ZIP pw:eip

This exploit demonstrates an unauthenticated arbitrary file read vulnerability in WordPress Plugin DZS Zoomsounds via directory traversal in the 'link' parameter of the 'dzsap_download' action. The PoC uses a crafted HTTP request to read '/etc/passwd'.

Classification

Working Poc 100%

Attack Type

Info Leak

Complexity

Trivial

Reliability

Reliable

Target: WordPress Plugin DZS Zoomsounds versions 1.10 to 6.45

No auth needed

Prerequisites: WordPress site with vulnerable DZS Zoomsounds plugin installed

MITRE ATT&CK

T1006 - Direct Volume Access

devstral-2 · analyzed Feb 16, 2026 Full analysis →

Nuclei Templates (1)

WordPress DZS Zoomsounds <=6.50 - Local File Inclusion

HIGHby daffainfo

References (2)

Core 2

Core References

Third Party Advisory x_refsource_misc

https://www.wordfence.com/vulnerability-advisories/#CVE-2021-39316

Exploit, Third Party Advisory, VDB Entry x_refsource_misc

http://packetstormsecurity.com/files/165146/WordPress-DZS-Zoomsounds-6.45-Arbitrary-File-Read.html

Scores

CVSS v3 7.5

EPSS 0.6654

EPSS Percentile 99.2%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

CISA SSVC

Vulnrichment

Exploitation none

Automatable yes

Technical Impact partial

Details

VulnCheck KEV 2023-11-22

CWE

CWE-22 CWE-552

Status published

Products (1)

digitalzoomstudio/zoomsounds < 6.45

Published Aug 31, 2021

Tracked Since Feb 18, 2026