6.5
Vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Exploitability: 2.8 / Impact: 3.6
Source: 134c704f-9b21-4f2e-91b3-4a467353bcc0 (Secondary)
Description
The EKC Tournament Manager WordPress plugin before 2.2.2 allows a logged in admin to download system files outside of the WordPress directory
Affected (1)
Products: Lukashuser: Ekc Tournament Manager
Configuration A
| Vulnerable Software | Affected Versions |
|---|---|
| Before 2.2.2 |
References (1)
Source: contact@wpscan.com
ExploitThird Party Advisory
Timeline
No history available yet.