Lucene search

CVE-2024-6553

🗓️ 24 Jul 2024 07:02:15Reported by WordfenceType

The WP Meteor Website Speed Optimization Addon plugin for WordPress has full path disclosure vulnerability in all versions up to, and including, 3.4.

5 of 5AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 5
NVD	CVE-2024-6553	24 Jul 202407:15	–	nvd
Vulnrichment	CVE-2024-6553 WP Meteor Website Speed Optimization Addon <= 3.4.3 - Unauthenticated Full Path Disclosure	24 Jul 202406:42	–	vulnrichment
Patchstack	WordPress WP Meteor Page Speed Optimization Topping Plugin <= 3.4.3 is vulnerable to Sensitive Data Exposure	24 Jul 202400:00	–	patchstack
Cvelist	CVE-2024-6553 WP Meteor Website Speed Optimization Addon <= 3.4.3 - Unauthenticated Full Path Disclosure	24 Jul 202406:42	–	cvelist
Wordfence Blog	Wordfence Intelligence Weekly WordPress Vulnerability Report (July 22, 2024 to July 28, 2024)	1 Aug 202414:18	–	wordfence

Nvd

Vulners

Vulnrichment

Node

wp-meteor wp_meteorRange<3.4.4wordpress

[
  {
    "vendor": "aguidrevitch",
    "product": "WP Meteor Website Speed Optimization Addon",
    "versions": [
      {
        "version": "*",
        "status": "affected",
        "lessThanOrEqual": "3.4.3",
        "versionType": "semver"
      }
    ],
    "defaultStatus": "unaffected"
  }
]

Source	Link
plugins	www.plugins.trac.wordpress.org/changeset
wordfence	www.wordfence.com/threat-intel/vulnerabilities/id/6197c194-5a17-41da-be79-58a6f5c68a0b

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

24 Jul 2024 07:15Current

5.1Medium risk

Vulners AI Score5.1

CVSS35.3

EPSS0.00402

SSVC

CWE-200