Volerion logoVolerion
Volerion logoVolerion

Bit Assist WordPress Plugin Path Traversal Vulnerability Allowing Arbitrary File Read

Vulnerability

A path traversal vulnerability has been identified in the Bit Assist plugin for WordPress, affecting all versions through 1.5.2. The issue arises in the downloadResponseFile() function, where authenticated attackers with Administrator-level access can exploit the vulnerability to read arbitrary files on the server, potentially accessing sensitive information.

Impact

Exploitation of this vulnerability allows for arbitrary file read on the server, which could lead to exposure of sensitive information.

Reproduction

To reproduce this vulnerability, an authenticated user with Administrator-level access can send a request to the downloadResponseFile() function. The request must include the 'widgetChannelID', 'fileID', and 'fileName' parameters. The 'fileID' parameter can be manipulated to traverse directories and access arbitrary files on the server.

Remediation

Users are advised to update the Bit Assist WordPress plugin to version 1.5.3 or later.

Added: Sep 1, 2025, 7:22 PM
Updated: Sep 1, 2025, 7:22 PM

Vulnerability Rating

Custom Algorithm
spread
2.2
impact
2.5
exploitability
6.0
remediation
7.7
relevance
0.0
threat
4.8
urgency
2.9
incentive
1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.