4 matches found
CVE-2024-5709
The WPBakery Visual Composer plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 7.7 via the 'layoutname' parameter. This makes it possible for authenticated attackers, with Author-level access and above, and with post permissions granted by an...
CVE-2024-5709
creationtimestamp| type| source ---|---|--- 2024-08-06 09:09:11+00:00| seen| https://t.me/cvedetector/2540...
CVE-2024-5709 WPBakery <= 7.7 - Authenticated (Author+) Local File Inclusion
The WPBakery Visual Composer plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 7.7 via the 'layoutname' parameter. This makes it possible for authenticated attackers, with Author-level access and above, and with post permissions granted by an...
WordPress WPBakery Page Builder Plugin <= 7.7 is vulnerable to Local File Inclusion
Software WPBakery Page Builder Type Plugin Vulnerable versions = 7.7 Fixed in 7.8 OWASP Top 10 A1: Injection Classification Local File Inclusion CVE CVE-2024-5709 Patch priority Low CVSS severity Low 6.6 Developer WPBakery PSID 1374f7b043bd Credits João Pedro Soares de Alcântara Required privileg...