Public exploit available

Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2005-4600 — Path Traversal in Tinymce Compressor PHP

CWE-22 — Path Traversal5 documents5 sources

Severity

6.4MEDIUMNVD

EPSS

17.9%

top 4.85%

CISA KEV

Not in KEV

Exploit

PoC available

Public exploit / PoC exists

Affected products

Wordpress Debian Wordpress Moxiecode Tinymce Compressor PHP

Timeline

PublishedDec 31

Latest updateMay 1

Description

Directory traversal vulnerability in tiny_mce_gzip.php in TinyMCE Compressor PHP before 1.06 allows remote attackers to read or include arbitrary files via a trailing null byte (%00) in the (1) theme, (2) language, (3) plugins, or (4) lang parameter.

CVSS vector

AV:N/AC:L/C:P/I:P/A:NExploitability: 10.0 | Impact: 4.9

Affected Packages3 packages

▶NVDmoxiecode/tinymce_compressor_php1.05

▶debiandebian/wordpress< wordpress 2.5.1-3 (bookworm)

▶Debianwordpress/wordpress< 2.5.1-3+3

Patches

Patch: secunia.com ↗Patch: tinymce.moxiecode.com ↗Patch: www.securityfocus.com ↗

🔴Vulnerability Details

GHSA

GHSA-32gf-9929-gmj6: Directory traversal vulnerability in tiny_mce_gzip↗2022-05-01

▶

OSV

CVE-2005-4600: Directory traversal vulnerability in tiny_mce_gzip↗2005-12-31

▶

💥Exploits & PoCs

Exploit-DB

iziContents rc6 - Local/Remote File Inclusion↗2007-09-21

▶

📋Vendor Advisories

Debian

CVE-2005-4600: wordpress - Directory traversal vulnerability in tiny_mce_gzip.php in TinyMCE Compressor PHP...↗2005

▶