← back
CVE-2018-0588

CVE-2018-0588

EPSS 2.6%
Directory traversal vulnerability in the AJAX function of Ultimate Member plugin prior to version 2.0.4 for WordPress allows remote attackers to read arbitrary files via unspecified vectors.
Affected products
Ultimate Member · Ultimate Member

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://jvn.jp/en/jp/JVN28804532/index.htmlhttps://wordpress.org/plugins/ultimate-member/#developershttps://wpvulndb.com/vulnerabilities/9608