virus logo Intrusion Prevention

WordPress.wp_lang.Path.Traversal

description-logoDescription

This indicates an attack attempt to exploit a Directory Traversal Vulnerability in WordPress.
The vulnerability is due to insufficient sanitizing of user supplied inputs in the application. A remote, unauthenticated attacker can exploit this vulnerability to disclose sensitive information.

affected-products-logoAffected Products

WordPress 5.0.x before 5.0.19
WordPress 5.1.x before 5.1.16
WordPress 5.2.x before 5.2.18
WordPress 5.3.x before 5.3.13
WordPress 5.4.x before 5.4.13
WordPress 5.5.x before 5.5.12
WordPress 5.6.x before 5.6.11
WordPress 5.7.x before 5.7.9
WordPress 5.8.x before 5.8.7
WordPress 5.9.x before 5.9.6
WordPress 6.0.x before 6.0.4
WordPress 6.1.x before 6.1.2
WordPress 6.2.x before 6.2.1

Impact logoImpact

Information Disclosure: Attacker can gain access to sensitive information.

recomended-action-logoRecommended Actions

Apply the most recent upgrade or patch from the vendor.
https://wordpress.org/news/category/security/

Coverage

IPS (Regular DB)
IPS (Extended DB)

Version Updates

Date Version Status Detail
2024-07-25 28.833
Modified
 Name:WordPress.
wp_lang.
Directory.
Traversal:WordPress.
wp_lang.
Path.
Traversal
2024-02-22 26.738
Modified
 Default_action:pass:drop
2024-01-16 26.715
New
ID 54545
Created Jan 08, 2024
Updated Jul 23, 2024
CVE ID
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon lightgray-background-circle-icon lightgray-background-circle-icon
Exploit Prediction Score 79.45%
Default Action drop
Active
Affected OS Windows, Linux, BSD, Solaris, MacOS
Affected App PHP_app
Profile Type Path Traversal