4 matches found
CVE-2021-24447
The WP Image Zoom WordPress plugin before 1.47 did not validate its tab parameter before using it in the includeonce function, leading to a local file inclusion issue in the admin dashboard...
CVE-2021-24447
The WP Image Zoom WordPress plugin before 1.47 did not validate its tab parameter before using it in the includeonce function, leading to a local file inclusion issue in the admin dashboard...
CVE-2021-24447 WP Image Zoom < 1.47 - Local File Inclusion
The WP Image Zoom WordPress plugin before 1.47 did not validate its tab parameter before using it in the includeonce function, leading to a local file inclusion issue in the admin dashboard...
CVE-2021-24447
The CVE covers the WordPress plugin WP Image Zoom, vulnerable before version 1.47. The root cause is lack of validation of the tab parameter used in include_once(), leading to a Local File Inclusion in the admin dashboard. Public sources consistently describe a local file inclusion vulnerability,...