{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2014-10-26T00:00:00", "descriptions": [{"lang": "en", "value": "Directory traversal vulnerability in the WordPress Download Manager plugin for WordPress allows remote attackers to read arbitrary files via a .. (dot dot) in the fname parameter to (1) views/file_download.php or (2) file_download.php."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-09-07T15:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "downloadmgr-wp-filedownload-dir-traversal(98318)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/98318"}, {"name": "70764", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/70764"}, {"tags": ["x_refsource_MISC"], "url": "http://packetstormsecurity.com/files/128852/WordPress-Download-Manager-Arbitrary-File-Download.html"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2014-8585", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Directory traversal vulnerability in the WordPress Download Manager plugin for WordPress allows remote attackers to read arbitrary files via a .. (dot dot) in the fname parameter to (1) views/file_download.php or (2) file_download.php."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "downloadmgr-wp-filedownload-dir-traversal(98318)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/98318"}, {"name": "70764", "refsource": "BID", "url": "http://www.securityfocus.com/bid/70764"}, {"name": "http://packetstormsecurity.com/files/128852/WordPress-Download-Manager-Arbitrary-File-Download.html", "refsource": "MISC", "url": "http://packetstormsecurity.com/files/128852/WordPress-Download-Manager-Arbitrary-File-Download.html"}]}}}}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2014-8585", "datePublished": "2014-11-04T15:00:00", "dateReserved": "2014-11-04T00:00:00", "dateUpdated": "2017-09-07T15:57:01", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.0"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:wpdownloadmanager:wordpress_download_manager:1.1:*:*:*:*:wordpress:*:*", "matchCriteriaId": "CCBF7431-F0EF-4BE4-BAFD-C80127896F5D", "vulnerable": true}, {"criteria": "cpe:2.3:a:wpdownloadmanager:wordpress_download_manager:1.2:*:*:*:*:wordpress:*:*", "matchCriteriaId": "CF6A222E-2A8D-4A74-9BF4-12CFBBCC977D", "vulnerable": true}, {"criteria": "cpe:2.3:a:wpdownloadmanager:wordpress_download_manager:1.2.1:*:*:*:*:wordpress:*:*", "matchCriteriaId": "D9A1A300-17F2-43FF-91D6-004F63B84FBA", "vulnerable": true}, {"criteria": "cpe:2.3:a:wpdownloadmanager:wordpress_download_manager:1.2.2:*:*:*:*:wordpress:*:*", "matchCriteriaId": "EC7EDE1F-760F-4410-BA1B-3B3960EF1DD3", "vulnerable": true}, {"criteria": "cpe:2.3:a:wpdownloadmanager:wordpress_download_manager:1.2.3:*:*:*:*:wordpress:*:*", "matchCriteriaId": "D4C8AC0B-DB56-438B-B767-924AB6730FBC", "vulnerable": true}, {"criteria": "cpe:2.3:a:wpdownloadmanager:wordpress_download_manager:1.2.4:*:*:*:*:wordpress:*:*", "matchCriteriaId": "7BDF370B-DFAF-4CE5-8904-B7A25EE63138", "vulnerable": true}, {"criteria": "cpe:2.3:a:wpdownloadmanager:wordpress_download_manager:1.2.5:*:*:*:*:wordpress:*:*", "matchCriteriaId": "CDBAC331-5D4C-494F-9EB4-867890918F1E", "vulnerable": true}, {"criteria": "cpe:2.3:a:wpdownloadmanager:wordpress_download_manager:1.3:*:*:*:*:wordpress:*:*", "matchCriteriaId": "FC96E9FE-8F50-4194-8767-0E17ADD19F46", "vulnerable": true}, {"criteria": "cpe:2.3:a:wpdownloadmanager:wordpress_download_manager:1.4:*:*:*:*:wordpress:*:*", "matchCriteriaId": "8A4E29E4-DEFD-4929-B672-F59DD4EC863D", "vulnerable": true}, {"criteria": "cpe:2.3:a:wpdownloadmanager:wordpress_download_manager:1.5:*:*:*:*:wordpress:*:*", "matchCriteriaId": "2025EC0F-535E-4C3B-8273-142F0C3FF6A5", "vulnerable": true}, {"criteria": "cpe:2.3:a:wpdownloadmanager:wordpress_download_manager:1.5.1:*:*:*:*:wordpress:*:*", "matchCriteriaId": "5BF7DE40-2D7B-4247-87A0-F046F1B20961", "vulnerable": true}, {"criteria": "cpe:2.3:a:wpdownloadmanager:wordpress_download_manager:1.5.2:*:*:*:*:wordpress:*:*", "matchCriteriaId": "20C888F9-B178-47C8-A7E4-D1C5080BCFE3", "vulnerable": true}, {"criteria": "cpe:2.3:a:wpdownloadmanager:wordpress_download_manager:1.5.3:*:*:*:*:wordpress:*:*", "matchCriteriaId": "A5DDAEB1-8CF4-4CBD-B33F-FF33310F8317", "vulnerable": true}, {"criteria": "cpe:2.3:a:wpdownloadmanager:wordpress_download_manager:1.5.9:*:*:*:*:wordpress:*:*", "matchCriteriaId": "5F0208A8-9222-4454-B606-D82F7F1BDA67", "vulnerable": true}, {"criteria": "cpe:2.3:a:wpdownloadmanager:wordpress_download_manager:1.5.32:*:*:*:*:wordpress:*:*", "matchCriteriaId": "665C3CA1-073F-4F52-933A-CB1C1C91D92C", "vulnerable": true}, {"criteria": "cpe:2.3:a:wpdownloadmanager:wordpress_download_manager:1.5.33:*:*:*:*:wordpress:*:*", "matchCriteriaId": "44AC65DE-057B-42B0-B033-AD2A299E6CF8", "vulnerable": true}, {"criteria": "cpe:2.3:a:wpdownloadmanager:wordpress_download_manager:2.0.1:*:*:*:*:wordpress:*:*", "matchCriteriaId": "3A9B5579-141A-4923-A2E5-6DE7C8CB567A", "vulnerable": true}, {"criteria": "cpe:2.3:a:wpdownloadmanager:wordpress_download_manager:2.0.2:*:*:*:*:wordpress:*:*", "matchCriteriaId": "582D8477-3DD1-4224-91C2-FCB46A59D6E8", "vulnerable": true}, {"criteria": "cpe:2.3:a:wpdownloadmanager:wordpress_download_manager:2.0.3:*:*:*:*:wordpress:*:*", "matchCriteriaId": "CA4C1763-07D8-4485-A133-E0FBCB9D1879", "vulnerable": true}, {"criteria": "cpe:2.3:a:wpdownloadmanager:wordpress_download_manager:2.0.4:*:*:*:*:wordpress:*:*", "matchCriteriaId": "1ED1B03F-05F1-4F9A-979C-209CC609A502", "vulnerable": true}, {"criteria": "cpe:2.3:a:wpdownloadmanager:wordpress_download_manager:2.0.5:*:*:*:*:wordpress:*:*", "matchCriteriaId": "B79CBF2E-D1C2-487F-8859-545D785F6F98", "vulnerable": true}, {"criteria": "cpe:2.3:a:wpdownloadmanager:wordpress_download_manager:2.0.6:*:*:*:*:wordpress:*:*", "matchCriteriaId": "E332FE6E-EA90-40BC-AF99-FDC9517C2653", "vulnerable": true}, {"criteria": "cpe:2.3:a:wpdownloadmanager:wordpress_download_manager:2.0.7:*:*:*:*:wordpress:*:*", "matchCriteriaId": "C665394B-1692-49BC-BDEC-00B068739BDA", "vulnerable": true}, {"criteria": "cpe:2.3:a:wpdownloadmanager:wordpress_download_manager:2.0.8:*:*:*:*:wordpress:*:*", "matchCriteriaId": "6B439E10-8A37-41EE-99F0-023C22287761", "vulnerable": true}, {"criteria": "cpe:2.3:a:wpdownloadmanager:wordpress_download_manager:2.0.9:*:*:*:*:wordpress:*:*", "matchCriteriaId": "2ECDF228-3F91-482C-8EE1-EEAA104B2F79", "vulnerable": true}, {"criteria": "cpe:2.3:a:wpdownloadmanager:wordpress_download_manager:2.0.10:*:*:*:*:wordpress:*:*", "matchCriteriaId": "A981E34E-0071-4DD6-B7CD-ACFAD4B07D80", "vulnerable": true}, {"criteria": "cpe:2.3:a:wpdownloadmanager:wordpress_download_manager:2.0.11:*:*:*:*:wordpress:*:*", "matchCriteriaId": "8F922614-635A-41D5-8244-6DB7E0A3C81A", "vulnerable": true}, {"criteria": "cpe:2.3:a:wpdownloadmanager:wordpress_download_manager:2.0.12:*:*:*:*:wordpress:*:*", "matchCriteriaId": "A50F8C3D-34CA-4176-B95B-FD6DA125925E", "vulnerable": true}, {"criteria": "cpe:2.3:a:wpdownloadmanager:wordpress_download_manager:2.0.13:*:*:*:*:wordpress:*:*", "matchCriteriaId": "FBAF8768-CF43-46E9-9C72-9D1E12E9CA20", "vulnerable": true}, {"criteria": "cpe:2.3:a:wpdownloadmanager:wordpress_download_manager:2.0.14:*:*:*:*:wordpress:*:*", "matchCriteriaId": "944619BE-69B9-4187-94BF-43585FDF798D", "vulnerable": true}, {"criteria": "cpe:2.3:a:wpdownloadmanager:wordpress_download_manager:2.0.15:*:*:*:*:wordpress:*:*", "matchCriteriaId": "FAAA7FBD-FF27-42DD-9966-F55D5151310D", "vulnerable": true}, {"criteria": "cpe:2.3:a:wpdownloadmanager:wordpress_download_manager:2.0.16:*:*:*:*:wordpress:*:*", "matchCriteriaId": "E133DD28-5075-4A56-82F4-2F2FA640E35C", "vulnerable": true}, {"criteria": "cpe:2.3:a:wpdownloadmanager:wordpress_download_manager:2.0.17:*:*:*:*:wordpress:*:*", "matchCriteriaId": "A596CDAC-6493-4B9A-A790-3447651E4016", "vulnerable": true}, {"criteria": "cpe:2.3:a:wpdownloadmanager:wordpress_download_manager:2.0.18:*:*:*:*:wordpress:*:*", "matchCriteriaId": "B5A0FAC1-B321-4785-BE97-25A1421B84B6", "vulnerable": true}, {"criteria": "cpe:2.3:a:wpdownloadmanager:wordpress_download_manager:2.0.19:*:*:*:*:wordpress:*:*", "matchCriteriaId": "D84AC495-5E0E-4036-8C23-379E7FE529AE", "vulnerable": true}, {"criteria": "cpe:2.3:a:wpdownloadmanager:wordpress_download_manager:2.1.0:*:*:*:*:wordpress:*:*", "matchCriteriaId": "38D8ABCB-F4B2-4390-9780-25FEFD200C7B", "vulnerable": true}, {"criteria": "cpe:2.3:a:wpdownloadmanager:wordpress_download_manager:2.1.1:*:*:*:*:wordpress:*:*", "matchCriteriaId": "BABBEE1B-9FC7-4DDF-B2B7-711661F46F87", "vulnerable": true}, {"criteria": "cpe:2.3:a:wpdownloadmanager:wordpress_download_manager:2.1.2:*:*:*:*:wordpress:*:*", "matchCriteriaId": "0464B7AC-8BA7-4159-9EF1-1B9FD4242216", "vulnerable": true}, {"criteria": "cpe:2.3:a:wpdownloadmanager:wordpress_download_manager:2.1.3:*:*:*:*:wordpress:*:*", "matchCriteriaId": "C61BE695-1366-46F3-8022-1FE19C417E7B", "vulnerable": true}, {"criteria": "cpe:2.3:a:wpdownloadmanager:wordpress_download_manager:2.2.0:*:*:*:*:wordpress:*:*", "matchCriteriaId": "BF7232F5-C1B3-4726-97E6-D7E73BF4948D", "vulnerable": true}, {"criteria": "cpe:2.3:a:wpdownloadmanager:wordpress_download_manager:2.2.1:*:*:*:*:wordpress:*:*", "matchCriteriaId": "B5D57FDD-3D4F-4566-AA1C-F4AAD26D9521", "vulnerable": true}, {"criteria": "cpe:2.3:a:wpdownloadmanager:wordpress_download_manager:2.2.2:*:*:*:*:wordpress:*:*", "matchCriteriaId": "A1858BCA-1DB8-4F92-89D4-48F9774311D8", "vulnerable": true}, {"criteria": "cpe:2.3:a:wpdownloadmanager:wordpress_download_manager:2.2.3:*:*:*:*:wordpress:*:*", "matchCriteriaId": "469B1139-DF95-4511-9024-23832494303B", "vulnerable": true}, {"criteria": "cpe:2.3:a:wpdownloadmanager:wordpress_download_manager:2.2.4:*:*:*:*:wordpress:*:*", "matchCriteriaId": "0503584E-0D7A-41A9-BD35-504386965BD8", "vulnerable": true}, {"criteria": "cpe:2.3:a:wpdownloadmanager:wordpress_download_manager:2.2.5:*:*:*:*:wordpress:*:*", "matchCriteriaId": "E5522CF6-6B1C-43DB-B3B9-0B9F5BDE8953", "vulnerable": true}, {"criteria": "cpe:2.3:a:wpdownloadmanager:wordpress_download_manager:2.2.6:*:*:*:*:wordpress:*:*", "matchCriteriaId": "48A191EA-C4D1-4437-A9F7-8A449292FF57", "vulnerable": true}, {"criteria": "cpe:2.3:a:wpdownloadmanager:wordpress_download_manager:2.2.7:*:*:*:*:wordpress:*:*", "matchCriteriaId": "8A3BDC4C-0F2B-4013-9ECB-C9E8424EB590", "vulnerable": true}, {"criteria": "cpe:2.3:a:wpdownloadmanager:wordpress_download_manager:2.2.8:*:*:*:*:wordpress:*:*", "matchCriteriaId": "058E7558-DFAB-4ADF-9974-F3A1C9E34541", "vulnerable": true}, {"criteria": "cpe:2.3:a:wpdownloadmanager:wordpress_download_manager:2.2.9:*:*:*:*:wordpress:*:*", "matchCriteriaId": "D1FE17BB-46D7-46E6-A3AD-3F2D33EDA86D", "vulnerable": true}, {"criteria": "cpe:2.3:a:wpdownloadmanager:wordpress_download_manager:2.3.0:*:*:*:*:wordpress:*:*", "matchCriteriaId": "B2239506-4C7F-42DF-A582-10F9C3E9CB81", "vulnerable": true}, {"criteria": "cpe:2.3:a:wpdownloadmanager:wordpress_download_manager:2.3.1:*:*:*:*:wordpress:*:*", "matchCriteriaId": "938700D8-D1FE-43B7-873D-06F4E12793D1", "vulnerable": true}, {"criteria": "cpe:2.3:a:wpdownloadmanager:wordpress_download_manager:2.3.2:*:*:*:*:wordpress:*:*", "matchCriteriaId": "8F3851E3-7E11-4CA7-B127-1E037835B261", "vulnerable": true}, {"criteria": "cpe:2.3:a:wpdownloadmanager:wordpress_download_manager:2.3.3:*:*:*:*:wordpress:*:*", "matchCriteriaId": "2432FA91-3424-4880-A76E-60C20D5B1719", "vulnerable": true}, {"criteria": "cpe:2.3:a:wpdownloadmanager:wordpress_download_manager:2.3.4:*:*:*:*:wordpress:*:*", "matchCriteriaId": "21C1CD66-5346-48A1-B6A4-A886FD57A862", "vulnerable": true}, {"criteria": "cpe:2.3:a:wpdownloadmanager:wordpress_download_manager:2.3.5:*:*:*:*:wordpress:*:*", "matchCriteriaId": "CF31A56F-D4A8-4541-AFD3-41860EFC8829", "vulnerable": true}, {"criteria": "cpe:2.3:a:wpdownloadmanager:wordpress_download_manager:2.3.6:*:*:*:*:wordpress:*:*", "matchCriteriaId": "648111FF-0530-441F-883E-C39B85899248", "vulnerable": true}, {"criteria": "cpe:2.3:a:wpdownloadmanager:wordpress_download_manager:2.3.7:*:*:*:*:wordpress:*:*", "matchCriteriaId": "89345139-5071-4E06-9074-903E8A611252", "vulnerable": true}, {"criteria": "cpe:2.3:a:wpdownloadmanager:wordpress_download_manager:2.3.8:*:*:*:*:wordpress:*:*", "matchCriteriaId": "7BF09005-1929-46C7-A595-13C41876C222", "vulnerable": true}, {"criteria": "cpe:2.3:a:wpdownloadmanager:wordpress_download_manager:2.3.9:*:*:*:*:wordpress:*:*", "matchCriteriaId": "CE284294-8E5F-4E81-B310-4518867FA4D9", "vulnerable": true}, {"criteria": "cpe:2.3:a:wpdownloadmanager:wordpress_download_manager:2.4.0:*:*:*:*:wordpress:*:*", "matchCriteriaId": "15415A7C-8445-4297-9A72-BA452BD2C7A7", "vulnerable": true}, {"criteria": "cpe:2.3:a:wpdownloadmanager:wordpress_download_manager:2.4.1:*:*:*:*:wordpress:*:*", "matchCriteriaId": "DE37BBC9-F200-47AE-8C37-CB0BDAA2364C", "vulnerable": true}, {"criteria": "cpe:2.3:a:wpdownloadmanager:wordpress_download_manager:2.4.2:*:*:*:*:wordpress:*:*", "matchCriteriaId": "3540914C-527B-4A04-B7C3-644D7D782499", "vulnerable": true}, {"criteria": "cpe:2.3:a:wpdownloadmanager:wordpress_download_manager:2.4.3:*:*:*:*:wordpress:*:*", "matchCriteriaId": "39DCE7EC-05B1-4241-9FDD-A07ED4A3C8CB", "vulnerable": true}, {"criteria": "cpe:2.3:a:wpdownloadmanager:wordpress_download_manager:2.4.4:*:*:*:*:wordpress:*:*", "matchCriteriaId": "28433A39-5172-44BE-AC6F-0B4BC20AA61B", "vulnerable": true}, {"criteria": "cpe:2.3:a:wpdownloadmanager:wordpress_download_manager:2.4.5:*:*:*:*:wordpress:*:*", "matchCriteriaId": "B01454AC-4BA4-467D-8FE5-AAE63323CD24", "vulnerable": true}, {"criteria": "cpe:2.3:a:wpdownloadmanager:wordpress_download_manager:2.4.6:*:*:*:*:wordpress:*:*", "matchCriteriaId": "DFA64584-DEFC-43E6-B594-08E3697FF5A5", "vulnerable": true}, {"criteria": "cpe:2.3:a:wpdownloadmanager:wordpress_download_manager:2.4.7:*:*:*:*:wordpress:*:*", "matchCriteriaId": "9DD920DC-2ED4-4791-A752-2C868C249471", "vulnerable": true}, {"criteria": "cpe:2.3:a:wpdownloadmanager:wordpress_download_manager:2.4.8:*:*:*:*:wordpress:*:*", "matchCriteriaId": "305985C5-8F19-4B2E-B21D-6482704A6064", "vulnerable": true}, {"criteria": "cpe:2.3:a:wpdownloadmanager:wordpress_download_manager:2.4.9:*:*:*:*:wordpress:*:*", "matchCriteriaId": "62806073-2B3F-4FD8-B2B1-5EB19BFB2B0F", "vulnerable": true}, {"criteria": "cpe:2.3:a:wpdownloadmanager:wordpress_download_manager:2.5.0:*:*:*:*:wordpress:*:*", "matchCriteriaId": "DE475437-88D7-48D0-BC00-1190242322C0", "vulnerable": true}, {"criteria": "cpe:2.3:a:wpdownloadmanager:wordpress_download_manager:2.5.1:*:*:*:*:wordpress:*:*", "matchCriteriaId": "2CC0AC5C-883D-493E-8EE3-55A2E9FFBA27", "vulnerable": true}, {"criteria": "cpe:2.3:a:wpdownloadmanager:wordpress_download_manager:2.5.2:*:*:*:*:wordpress:*:*", "matchCriteriaId": "B0034A8E-8901-49C1-AD3F-05BD128F2513", "vulnerable": true}, {"criteria": "cpe:2.3:a:wpdownloadmanager:wordpress_download_manager:2.5.3:*:*:*:*:wordpress:*:*", "matchCriteriaId": "8865E18A-6800-4CBF-B247-1A0C3B02837F", "vulnerable": true}, {"criteria": "cpe:2.3:a:wpdownloadmanager:wordpress_download_manager:2.5.4:*:*:*:*:wordpress:*:*", "matchCriteriaId": "54205B74-3A17-46F1-9D8D-67B032576B74", "vulnerable": true}, {"criteria": "cpe:2.3:a:wpdownloadmanager:wordpress_download_manager:2.5.5:*:*:*:*:wordpress:*:*", "matchCriteriaId": "11A1C938-9AD2-4428-8609-FA63D120A66A", "vulnerable": true}, {"criteria": "cpe:2.3:a:wpdownloadmanager:wordpress_download_manager:2.5.6:*:*:*:*:wordpress:*:*", "matchCriteriaId": "BC37CF22-B4E7-4423-A5BF-2FADFF73C339", "vulnerable": true}, {"criteria": "cpe:2.3:a:wpdownloadmanager:wordpress_download_manager:2.5.7:*:*:*:*:wordpress:*:*", "matchCriteriaId": "2025EA33-F3BA-4EDF-A442-611FF0F28817", "vulnerable": true}, {"criteria": "cpe:2.3:a:wpdownloadmanager:wordpress_download_manager:2.5.8:*:*:*:*:wordpress:*:*", "matchCriteriaId": "8566DD87-FC64-4882-8150-98B23C33DE1E", "vulnerable": true}, {"criteria": "cpe:2.3:a:wpdownloadmanager:wordpress_download_manager:2.5.9:*:*:*:*:wordpress:*:*", "matchCriteriaId": "F9529908-A424-4DC7-BD1A-BF674F459645", "vulnerable": true}, {"criteria": "cpe:2.3:a:wpdownloadmanager:wordpress_download_manager:2.5.91:*:*:*:*:wordpress:*:*", "matchCriteriaId": "84689B2B-8EFB-4D00-807F-5F830BE96355", "vulnerable": true}, {"criteria": "cpe:2.3:a:wpdownloadmanager:wordpress_download_manager:2.5.92:*:*:*:*:wordpress:*:*", "matchCriteriaId": "16DF8393-D46E-49B5-A84F-0F749096E996", "vulnerable": true}, {"criteria": "cpe:2.3:a:wpdownloadmanager:wordpress_download_manager:2.5.93:*:*:*:*:wordpress:*:*", "matchCriteriaId": "DDCF0EC0-78B1-448C-A802-ADCF072337BC", "vulnerable": true}, {"criteria": "cpe:2.3:a:wpdownloadmanager:wordpress_download_manager:2.5.94:*:*:*:*:wordpress:*:*", "matchCriteriaId": "0EF9A92A-F760-47D7-BA8F-279855634C83", "vulnerable": true}, {"criteria": "cpe:2.3:a:wpdownloadmanager:wordpress_download_manager:2.5.95:*:*:*:*:wordpress:*:*", "matchCriteriaId": "3344DA24-B69B-4300-860A-DA4B9835331A", "vulnerable": true}, {"criteria": "cpe:2.3:a:wpdownloadmanager:wordpress_download_manager:2.5.96:*:*:*:*:wordpress:*:*", "matchCriteriaId": "ABADF15B-244D-41A0-965E-BBA154A26951", "vulnerable": true}, {"criteria": "cpe:2.3:a:wpdownloadmanager:wordpress_download_manager:2.5.97:*:*:*:*:wordpress:*:*", "matchCriteriaId": "DEE4D972-F7D7-4B08-9C40-D6C9682657F0", "vulnerable": true}, {"criteria": "cpe:2.3:a:wpdownloadmanager:wordpress_download_manager:2.5.98:*:*:*:*:wordpress:*:*", "matchCriteriaId": "63F70D45-6648-47BA-AB2B-BB4685BC5408", "vulnerable": true}, {"criteria": "cpe:2.3:a:wpdownloadmanager:wordpress_download_manager:2.5.99:*:*:*:*:wordpress:*:*", "matchCriteriaId": "923CC48D-0D8E-4BE6-A44E-C2E3E3BD47F8", "vulnerable": true}, {"criteria": "cpe:2.3:a:wpdownloadmanager:wordpress_download_manager:2.6.0:*:*:*:*:wordpress:*:*", "matchCriteriaId": "7A2355DC-2EA1-4BC0-8945-DB82B94F2543", "vulnerable": true}, {"criteria": "cpe:2.3:a:wpdownloadmanager:wordpress_download_manager:2.6.1:*:*:*:*:wordpress:*:*", "matchCriteriaId": "4C755447-6A10-4D01-8864-D88829128E31", "vulnerable": true}, {"criteria": "cpe:2.3:a:wpdownloadmanager:wordpress_download_manager:2.6.2:*:*:*:*:wordpress:*:*", "matchCriteriaId": "8C0DCFB5-8147-46F4-AE94-D0EF8C9E3BB9", "vulnerable": true}, {"criteria": "cpe:2.3:a:wpdownloadmanager:wordpress_download_manager:2.6.3:*:*:*:*:wordpress:*:*", "matchCriteriaId": "2A373BD1-240A-411C-91C3-6147345E595F", "vulnerable": true}, {"criteria": "cpe:2.3:a:wpdownloadmanager:wordpress_download_manager:2.6.4:*:*:*:*:wordpress:*:*", "matchCriteriaId": "BE7D5113-EFB6-478A-A12E-687A8F0C9E63", "vulnerable": true}, {"criteria": "cpe:2.3:a:wpdownloadmanager:wordpress_download_manager:2.6.5:*:*:*:*:wordpress:*:*", "matchCriteriaId": "A77DDB6F-678C-4C03-BA4F-5CC4CC04BF69", "vulnerable": true}, {"criteria": "cpe:2.3:a:wpdownloadmanager:wordpress_download_manager:2.6.6:*:*:*:*:wordpress:*:*", "matchCriteriaId": "1D169E39-3B59-497F-B3D9-06CC19BE3894", "vulnerable": true}, {"criteria": "cpe:2.3:a:wpdownloadmanager:wordpress_download_manager:2.6.7:*:*:*:*:wordpress:*:*", "matchCriteriaId": "17CE7319-953E-4108-90D5-DCE3E2BD2302", "vulnerable": true}, {"criteria": "cpe:2.3:a:wpdownloadmanager:wordpress_download_manager:2.6.8:*:*:*:*:wordpress:*:*", "matchCriteriaId": "523F3435-86A3-4ED6-A8F6-B45518596DC1", "vulnerable": true}, {"criteria": "cpe:2.3:a:wpdownloadmanager:wordpress_download_manager:2.6.9:*:*:*:*:wordpress:*:*", "matchCriteriaId": "9B163EA8-2216-44CE-8334-F416EE61FC91", "vulnerable": true}, {"criteria": "cpe:2.3:a:wpdownloadmanager:wordpress_download_manager:2.6.91:*:*:*:*:wordpress:*:*", "matchCriteriaId": "C8F28ABF-DA5B-442B-8F9E-8F233990B486", "vulnerable": true}, {"criteria": "cpe:2.3:a:wpdownloadmanager:wordpress_download_manager:2.6.92:*:*:*:*:wordpress:*:*", "matchCriteriaId": "22F2B176-303F-4B6C-B0A0-F78D943A6CBE", "vulnerable": true}, {"criteria": "cpe:2.3:a:wpdownloadmanager:wordpress_download_manager:2.6.93:*:*:*:*:wordpress:*:*", "matchCriteriaId": "09679478-4165-424A-BE35-80D34DCE8FE2", "vulnerable": true}, {"criteria": "cpe:2.3:a:wpdownloadmanager:wordpress_download_manager:2.6.94:*:*:*:*:wordpress:*:*", "matchCriteriaId": "C5ABBE97-42C6-43C5-9239-FBBEF2B00178", "vulnerable": true}, {"criteria": "cpe:2.3:a:wpdownloadmanager:wordpress_download_manager:2.6.95:*:*:*:*:wordpress:*:*", "matchCriteriaId": "4B752B24-EB17-4915-9751-B6C03EB7B14B", "vulnerable": true}, {"criteria": "cpe:2.3:a:wpdownloadmanager:wordpress_download_manager:2.6.96:*:*:*:*:wordpress:*:*", "matchCriteriaId": "350F2C6A-68AB-4AD1-B291-52E55277205C", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "Directory traversal vulnerability in the WordPress Download Manager plugin for WordPress allows remote attackers to read arbitrary files via a .. (dot dot) in the fname parameter to (1) views/file_download.php or (2) file_download.php."}, {"lang": "es", "value": "Vulnerabilidad de salto de directorio en el plugin WordPress Download Manager para WordPress permite a atacantes remotos leer ficheros arbitrarios a trav\u00e9s de un .. (punto punto) en el par\u00e1metro fname en (1) views/file_download.php o (2) file_download.php."}], "id": "CVE-2014-8585", "lastModified": "2020-05-05T12:21:05.580", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 5.0, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2014-11-04T15:55:06.310", "references": [{"source": "cve@mitre.org", "tags": ["Exploit"], "url": "http://packetstormsecurity.com/files/128852/WordPress-Download-Manager-Arbitrary-File-Download.html"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/bid/70764"}, {"source": "cve@mitre.org", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/98318"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-59"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{}