Lucene search
PatchstackCVELIST:CVE-2024-35745HistoryJun 10, 2024 - 4:32 p.m.
CVE-2024-35745 WordPress Strategery Migrations plugin <= 1.0 - Arbitrary File Deletion vulnerability
2024-06-1016:32:30
CWE-22
Patchstack
www.cve.org
8
wordpress
migrations
path traversal
file manipulation
cve-2024-35745
gabriel somoza
joseph fitzgibbons
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
EPSS
0.001
Percentile
38.6%
Improper Limitation of a Pathname to a Restricted Directory (‘Path Traversal’) vulnerability in Gabriel Somoza / Joseph Fitzgibbons Strategery Migrations allows Path Traversal, File Manipulation.This issue affects Strategery Migrations: from n/a through 1.0.
CNA Affected
[
{
"collectionURL": "https://wordpress.org/plugins",
"defaultStatus": "unaffected",
"packageName": "strategery-migrations",
"product": "Strategery Migrations",
"vendor": "Gabriel Somoza / Joseph Fitzgibbons",
"versions": [
{
"lessThanOrEqual": "1.0",
"status": "affected",
"version": "n/a",
"versionType": "custom"
}
]
}
]Related
wpvulndb
wpvulndb
Strategery Migrations <= 1.0 - Unauthenticated Arbitrary File Deletion
2024-06-12 00:00:00
vulnrichment
vulnrichment
nvd
nvd
CVE-2024-35745
2024-06-10 17:16:30
cve
cve
CVE-2024-35745
2024-06-10 17:16:30
wordfence
wordfence
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
EPSS
0.001
Percentile
38.6%
Related for CVELIST:CVE-2024-35745