Headline
CVE-2014-125093: Fix full path disclosure vulnerability and increment version. · wp-plugins/ad-blocking-detector@3312b9c
A vulnerability has been found in Ad Blocking Detector Plugin up to 1.2.1 and classified as problematic. This vulnerability affects unknown code of the file ad-blocking-detector.php. The manipulation leads to information disclosure. The attack can be initiated remotely. Upgrading to version 1.2.2 is able to address this issue. The name of the patch is 3312b9cd79e5710d1e282fc9216a4e5ab31b3d94. It is recommended to upgrade the affected component. VDB-222610 is the identifier assigned to this vulnerability.
@@ -4,7 +4,7 @@ Donate link: http://adblockingdetector.jtmorris.net/
Tags: adblock, adblocker, ad blocker, adblock plus, detector, advertisement
Requires at least: 3.8
Tested up to: 3.9
Stable tag: 1.2.1
Stable tag: 1.2.2
License: GPLv2 or later
License URI: http://www.gnu.org/licenses/gpl-2.0.html
@@ -74,6 +74,8 @@ to display rotating ads while harnessing the power of ad block detection. You c
== Changelog ==
= 1.2.2 =
* Fixed PHP warnings when PHPSESSID cookie contains illegal characters.
= 1.2.1 =
* Add support for WordPress 3.9.
= 1.2.0 =
@@ -100,6 +102,8 @@ to display rotating ads while harnessing the power of ad block detection. You c
== Upgrade Notice ==
= 1.2.2 =
SECURITY UPDATE: This update plugs a security hole that, in cicumstances, gave [Full Path Disclosure](https://www.owasp.org/index.php/Full_Path_Disclosure).
= 1.2.0 =
Added a powerful new feature: shortcode support. Now you can [integrate content from other plugins](http://adblockingdetector.jtmorris.net/display-rotating-ads/) with Ad Blocking Detector.
= 1.1.3 =