The Tera Charts plugin (version 0.1) for WordPress contains flaws that allow malicious individuals to access and view files that they should not have access to. This is done by entering special characters (such as “”..”” or “”dot dot””) into the “”fn”” parameter of either the “”charts/treemap.php”” or “”charts/zoomabletreemap.php”” pages.
This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!
Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:
> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21
Is this information incorrect? Please leave us a message.
