WordPress Font Plugin Path Traversal Vulnerability (CVE-2015-7683)
Publish Date: 31 de maja de 2016
Severity: : Critical
Advisory Date: 31 de maja de 2016
DESCRIPTION
There is an absolute path traversal vulnerability in WordPress which allows remote attackers to read arbitrary files via a full path name in the URL parameter.
INFORMATION EXPOSURE
Apply associated Trend Micro DPI Rules.
SOLUTION
Trend Micro Deep Security DPI Rule Number: 1007178