← back
CVE-2018-9118

CVE-2018-9118

EPSS 48.2%
exports/download.php in the 99 Robots WP Background Takeover Advertisements plugin before 4.1.5 for WordPress has Directory Traversal via a .. in the filename parameter.
Affected products
n/a · n/a
public PoCs found2
cve_referencewww.exploit-db.com/exploits/44417/unverifiedexploitdbwww.exploit-db.com/exploits/44417unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://99robots.com/docs/wp-background-takeover-advertisements/https://wpvulndb.com/vulnerabilities/9056https://www.exploit-db.com/exploits/44417/