CyberSec.Space Logo
Back to CVE Browser

CVE-2017-15079

HIGH
7.5
CVSS Severity Score
EPSS Score0.1140%
EPSS Percentile41.96th
PublishedOct 6, 2017
Last ModifiedMay 13, 2026

Vulnerability Description

The Smush Image Compression and Optimization plugin before 2.7.6 for WordPress allows directory traversal.

Affected Platforms (CPE)

πŸ“¦
Wpmudev

Smush Image Compression And Optimization

<= 2.7.5

References & Advisories

πŸ”— https://wordpress.org/plugins/wp-smushit/#developers
πŸ”— https://wordpress.org/support/topic/file-transversal-bug/
πŸ”— https://wordpress.org/plugins/wp-smushit/#developers
πŸ”— https://wordpress.org/support/topic/file-transversal-bug/

Related Vulnerabilities

CVE-2017-1445110.0

An exploitable out-of-bounds read vulnerability exists in libevm (Ethereum Virtual Machine) of CPP-Ethereum. A specially crafted s...

CVE-2017-2023010.0

Storable versions before 3.05 for Perl has a stack overflow. The retrieve_hook function stored the length of the class name into ...

CVE-2017-1445910.0

An exploitable OS Command Injection vulnerability exists in the Telnet, SSH, and console login functionality of Moxa AWK-3131A Ind...

CVE-2017-379110.0

A vulnerability in the web-based GUI of Cisco Prime Home could allow an unauthenticated, remote attacker to bypass authentication ...