Primary

Context

Fastw3b LLC FW Food Menu Path Traversal Vulnerability Allowing Arbitrary File Deletion

Vulnerability

A path traversal vulnerability has been identified in the FW Food Menu plugin by Fastw3b LLC, affecting versions through 6.0.0. This vulnerability allows for improper limitation of pathname, enabling attackers to traverse directories and potentially delete arbitrary files from the website.

Impact

Exploitation of this vulnerability could lead to arbitrary file deletion. Deleting core files could disrupt the website's functionality, causing it to break or stop working properly.

Remediation

Users are advised to update the FW Food Menu plugin to a version later than 6.0.0. For those unable to update immediately, Patchstack offers a virtual patch that blocks attacks targeting this vulnerability.

Added: Sep 1, 2025, 7:22 PM

Updated: Sep 1, 2025, 7:22 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

7.4

remediation

0.0

relevance

0.2

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

7.4

remediation

0.0

relevance

0.2

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Fastw3b LLC FW Food Menu Path Traversal Vulnerability Allowing Arbitrary File Deletion

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating