Lucene search

CVE-2024-35754

🗓️ 10 Jun 2024 17:31:16Reported by PatchstackType

Improper limitation of directory traversal in Ovic Importe

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 6
Vulnrichment	CVE-2024-35754 WordPress Ovic Importer plugin <= 1.6.3 - Arbitrary File Download vulnerability	10 Jun 202416:41	–	vulnrichment
Patchstack	WordPress Ovic Importer Plugin <= 1.6.3 is vulnerable to Arbitrary File Download	6 Jun 202400:00	–	patchstack
NVD	CVE-2024-35754	10 Jun 202417:16	–	nvd
Cvelist	CVE-2024-35754 WordPress Ovic Importer plugin <= 1.6.3 - Arbitrary File Download vulnerability	10 Jun 202416:41	–	cvelist
WPVulnDB	Ovic Importer <= 1.6.3 - Authenticated (Subscriber+) Arbitrary File Download	12 Jun 202400:00	–	wpvulndb
Wordfence Blog	Wordfence Intelligence Weekly WordPress Vulnerability Report (June 3, 2024 to June 9, 2024)	13 Jun 202415:35	–	wordfence

Nvd

Vulners

Node

ovic_importer_project ovic_importerRange≤1.6.3wordpress

[
  {
    "collectionURL": "https://wordpress.org/plugins",
    "defaultStatus": "unaffected",
    "packageName": "ovic-import-demo",
    "product": "Ovic Importer",
    "vendor": "Ovic Team",
    "versions": [
      {
        "lessThanOrEqual": "1.6.3",
        "status": "affected",
        "version": "n/a",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
patchstack	www.patchstack.com/database/vulnerability/ovic-import-demo/wordpress-ovic-importer-plugin-1-6-3-arbitrary-file-download-vulnerability

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

10 Jun 2024 17:16Current

7High risk

Vulners AI Score7

CVSS36.5 - 7.5

EPSS0.00445

SSVC

CWE-22