CVE-2019-1000031
N/A
N/A
Summary
A disk space or quota exhaustion issue exists in article2pdf_getfile.php in the article2pdf Wordpress plugin 0.24, 0.25, 0.26, 0.27. Visiting PDF generation link but not following the redirect will leave behind a PDF file on disk which will never be deleted by the plug-in.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| article2pdf | article2pdf Wordpress plug-in | 0.24 | affected |
| article2pdf | article2pdf Wordpress plug-in | 0.25 | affected |
| article2pdf | article2pdf Wordpress plug-in | 0.26 | affected |
| article2pdf | article2pdf Wordpress plug-in | 0.27 | affected |
Weaknesses
- disk consumption
ADP Enrichment
CVE Program Container
Additional References
- https://seclists.org/bugtraq/2019/Mar/49
- http://packetstormsecurity.com/files/152236/WordPress-article2pdf-0.24-DoS-File-Deletion-Disclosure.html
- https://wpvulndb.com/vulnerabilities/9246
References
- https://seclists.org/bugtraq/2019/Mar/49
- http://packetstormsecurity.com/files/152236/WordPress-article2pdf-0.24-DoS-File-Deletion-Disclosure.html
- https://wpvulndb.com/vulnerabilities/9246
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.