CVE-2019-8943

WordPress through 5.0.3 allows Path Traversal in wp_crop_image(). An attacker (who has privileges to crop an image) can write the output image to an arbitrary directory via a filename containing two image extensions and ../ sequences, such as a filename ending with the .jpg?/../../file.jpg substring.

Published : 2019-02-20 03:29 Updated : 2019-04-25 12:57

4.0
CVSS Score More info
Score 4.0 / 10
4.0
Vendor Product Version URI
Wordpress Wordpress 5.0.3 cpe:/a:wordpress:wordpress:5.0.3
  1. Wordpress (1) Search CVE
    1. Wordpress (1) Search CVE
      1. 5.0.3

CWE

ID Name Description Links
CWE-22 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') The software uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the software does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory. CVE