CVE-2018-0586

Summary

Directory traversal vulnerability in the shortcodes function of Ultimate Member plugin prior to version 2.0.4 for WordPress allows remote authenticated attackers to read arbitrary files via unspecified vectors.

Affected Software

VendorProductVersion RangeStatus
Ultimate MemberUltimate Memberprior to version 2.0.4affected

Weaknesses

  • Directory traversal

ADP Enrichment

CVE Program Container

Additional References

References