CVE-2024-8104

The The Ultimate WordPress Toolkit – WP Extended plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and including, 3.0.8 via the download_file_ajax function. This makes it possible for authenticated attackers, with subscriber access and above, to read the contents of arbitrary files on the server, which can contain sensitive information.
Configurations

Configuration 1 (hide)

cpe:2.3:a:wpextended:wp_extended:*:*:*:*:*:wordpress:*:*

History

05 Sep 2024, 13:28

Type Values Removed Values Added
CVSS v2 : unknown
v3 : 8.8
v2 : unknown
v3 : 6.5
First Time Wpextended
Wpextended wp Extended
CPE cpe:2.3:a:wpextended:wp_extended:*:*:*:*:*:wordpress:*:*
References () https://plugins.trac.wordpress.org/browser/wpextended/trunk/includes/libraries/wpext_export/wpext_export.php#L137 - () https://plugins.trac.wordpress.org/browser/wpextended/trunk/includes/libraries/wpext_export/wpext_export.php#L137 - Product
References () https://plugins.trac.wordpress.org/changeset?sfp_email=&sfph_mail=&reponame=&new=3145430%40wpextended%2Ftrunk&old=3134345%40wpextended%2Ftrunk&sfp_email=&sfph_mail= - () https://plugins.trac.wordpress.org/changeset?sfp_email=&sfph_mail=&reponame=&new=3145430%40wpextended%2Ftrunk&old=3134345%40wpextended%2Ftrunk&sfp_email=&sfph_mail= - Patch
References () https://www.wordfence.com/threat-intel/vulnerabilities/id/0fad1834-0ee1-4542-a5a7-55a32861c81d?source=cve - () https://www.wordfence.com/threat-intel/vulnerabilities/id/0fad1834-0ee1-4542-a5a7-55a32861c81d?source=cve - Third Party Advisory

04 Sep 2024, 13:05

Type Values Removed Values Added
Summary
  • (es) El complemento The Ultimate WordPress Toolkit – WP Extended para WordPress es vulnerable a Directory Traversal en todas las versiones hasta la 3.0.8 incluida a través de la función download_file_ajax. Esto permite que atacantes autenticados, con acceso de suscriptor o superior, lean el contenido de archivos arbitrarios en el servidor, que pueden contener información confidencial.

04 Sep 2024, 07:15

Type Values Removed Values Added
New CVE

Information

Published : 2024-09-04 07:15

Updated : 2024-09-05 13:28


NVD link : CVE-2024-8104

Mitre link : CVE-2024-8104

CVE.ORG link : CVE-2024-8104


JSON object : View

Products Affected

wpextended

  • wp_extended
CWE
CWE-22

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')