CVE-2018-25325 | woocommerce-csvimport WooCommerce CSV-Importer 3.3.6 delete_export_file filename path traversal (Exploit 44433 / EDB-44433)

A vulnerability categorized as critical has been discovered in woocommerce-csvimport WooCommerce CSV-Importer 3.3.6. The affected element is the function delete_export_file. Executing a manipulation of the argument filename can lead to path traversal.

The identification of this vulnerability is CVE-2018-25325. The attack may be launched remotely. Furthermore, there is an exploit available.VulDB Recent EntriesRead More