CVE-2016-20082 | Abtest 1.0.6 on WordPress abtest_admin.php action filename control (Exploit 39577 / EDB-39577)

A vulnerability has been found in Abtest 1.0.6 on WordPress and classified as problematic. The impacted element is an unknown function of the file abtest_admin.php. Performing a manipulation of the argument action results in improper control of filename for include/require statement in php program (‘php remote file inclusion’). This vulnerability only affects products that are no longer supported by the maintainer.

This vulnerability is known as CVE-2016-20082. Remote exploitation of the attack is possible. Furthermore, an exploit is available.

CVE-2016-20082 | Abtest 1.0.6 on WordPress abtest_admin.php action filename control (Exploit 39577 / EDB-39577)

Post correlati

CVE-2024-9370 | Google Chrome up to 129.0.6668.70 V8 Privilege Escalation

CVE-2024-37547 | Livemesh Addons for Elementor Plugin up to 8.3.7 on WordPress path traversal

CVE-2024-20129 | MediaTek MT6580 Telephony out-of-bounds (MSV-2025 / ALPS09289881)

CVE-2024-40953 | Linux Kernel up to 6.1.95/6.6.35/6.9.6 kvm_vcpu_on_spin out-of-bounds