Lucene search
PatchstackCVELIST:CVE-2024-38709HistoryJul 12, 2024 - 2:10 p.m.
CVE-2024-38709 WordPress GD Rating System plugin <= 3.6 - Local File Inclusion vulnerability
2024-07-1214:10:24
CWE-22
Patchstack
www.cve.org
9
wordpress
gd rating system
local file inclusion
CVSS3
5.3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N
EPSS
0
Percentile
10.8%
Improper Limitation of a Pathname to a Restricted Directory (‘Path Traversal’) vulnerability in Milan Petrovic GD Rating System allows PHP Local File Inclusion.This issue affects GD Rating System: from n/a through 3.6.
CNA Affected
[
{
"collectionURL": "https://wordpress.org/plugins",
"defaultStatus": "unaffected",
"packageName": "gd-rating-system",
"product": "GD Rating System",
"vendor": "Milan Petrovic",
"versions": [
{
"changes": [
{
"at": "3.6.1",
"status": "unaffected"
}
],
"lessThanOrEqual": "3.6",
"status": "affected",
"version": "n/a",
"versionType": "custom"
}
]
}
]Related
nvd
nvd
CVE-2024-38709
2024-07-12 14:15:16
vulnrichment
vulnrichment
cve
cve
CVE-2024-38709
2024-07-12 14:15:16
freebsd
freebsd
Apache httpd -- multiple vulnerabilities
2024-04-04 00:00:00
nessus
nessus
wordfence
wordfence
CVSS3
5.3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N
EPSS
0
Percentile
10.8%
Related for CVELIST:CVE-2024-38709