CVE-2015-9470

CVE-2015-9470

EPSS 4.1%

The history-collection plugin through 1.1.1 for WordPress has directory traversal via the download.php var parameter.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://packetstormsecurity.com/files/132279/https://wordpress.org/plugins/history-collection/#developers