Skip to main content

Gracemedia Media Player

1 CVEs product

Monthly

CVE-2019-9618 CRITICAL POC THREAT Act Now

The GraceMedia Media Player plugin 1.0 for WordPress allows Local File Inclusion via the "cfg" parameter. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Path Traversal WordPress Gracemedia Media Player
NVD Exploit-DB
CVSS 3.0
9.8
EPSS
40.8%
EPSS 41% CVSS 9.8
CRITICAL POC THREAT Act Now

The GraceMedia Media Player plugin 1.0 for WordPress allows Local File Inclusion via the "cfg" parameter. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Path Traversal WordPress Gracemedia Media Player
NVD Exploit-DB

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy