The The Ultimate WordPress Toolkit – WP Extended plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and including, 3.0.8 via the download_file_ajax function. This makes it possible for authenticated attackers, with subscriber access and above, to read the contents of arbitrary files on the server, which can contain sensitive information.
References
Configurations
History
05 Sep 2024, 13:28
Type | Values Removed | Values Added |
---|---|---|
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 6.5 |
First Time |
Wpextended
Wpextended wp Extended |
|
CPE | cpe:2.3:a:wpextended:wp_extended:*:*:*:*:*:wordpress:*:* | |
References | () https://plugins.trac.wordpress.org/browser/wpextended/trunk/includes/libraries/wpext_export/wpext_export.php#L137 - Product | |
References | () https://plugins.trac.wordpress.org/changeset?sfp_email=&sfph_mail=&reponame=&new=3145430%40wpextended%2Ftrunk&old=3134345%40wpextended%2Ftrunk&sfp_email=&sfph_mail= - Patch | |
References | () https://www.wordfence.com/threat-intel/vulnerabilities/id/0fad1834-0ee1-4542-a5a7-55a32861c81d?source=cve - Third Party Advisory |
04 Sep 2024, 13:05
Type | Values Removed | Values Added |
---|---|---|
Summary |
|
04 Sep 2024, 07:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2024-09-04 07:15
Updated : 2024-09-05 13:28
NVD link : CVE-2024-8104
Mitre link : CVE-2024-8104
CVE.ORG link : CVE-2024-8104
JSON object : View
Products Affected
wpextended
- wp_extended
CWE
CWE-22
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')