CVE-2024-6567

🗓️ 02 Aug 2024 02:47:15Reported by WordfenceType

Ebook Store WordPress plugin vulnerable to Full Path Disclosure up to version 5.800

Reporter	Title	Published	Views	Family All 5
Patchstack	WordPress Ebook Store Plugin <= 5.8001 is vulnerable to Sensitive Data Exposure	2 Aug 202400:00	–	patchstack
Vulnrichment	CVE-2024-6567 Ebook Store <= 5.8001 - Unauthenticated Full Path Disclosure	2 Aug 202401:52	–	vulnrichment
NVD	CVE-2024-6567	2 Aug 202402:15	–	nvd
Cvelist	CVE-2024-6567 Ebook Store <= 5.8001 - Unauthenticated Full Path Disclosure	2 Aug 202401:52	–	cvelist
Wordfence Blog	Wordfence Intelligence Weekly WordPress Vulnerability Report (July 29, 2024 to August 4, 2024)	8 Aug 202415:35	–	wordfence

Nvd

Vulners

Vulnrichment

Node

shopfiles ebook_storeRange≤5.8001wordpress

[
  {
    "vendor": "motovnet",
    "product": "Ebook Store",
    "versions": [
      {
        "version": "*",
        "status": "affected",
        "lessThanOrEqual": "5.8001",
        "versionType": "semver"
      }
    ],
    "defaultStatus": "unaffected"
  }
]

Source	Link
plugins	www.plugins.trac.wordpress.org/browser/ebook-store/trunk/fpdi/fpdi-protection-master/local-tests/simple.php
wordfence	www.wordfence.com/threat-intel/vulnerabilities/id/ebe431a7-b552-4891-9784-c6a7353228da

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

02 Aug 2024 02:15Current

5.1Medium risk

Vulners AI Score5.1

CVSS35.3

EPSS0.0018

SSVC

CWE-200