2 matches found
CVE-2024-10470
creationtimestamp| type| source ---|---|--- 2024-11-09 05:41:52+00:00| seen| https://infosec.exchange/users/cve/statuses/113451395446581817 2024-11-09 08:16:12+00:00| seen| https://t.me/cvedetector/10277 2024-11-10 05:20:50+00:00| seen| https://t.me/CyberBulletin/26374 2024-11-10 05:20:50+00:00|...
CVE-2024-10470 WPLMS Learning Management System for WordPress <= 4.962 - Unauthenticated Arbitrary File Read and Deletion
The WPLMS Learning Management System for WordPress, WordPress LMS theme for WordPress is vulnerable to arbitrary file read and deletion due to insufficient file path validation and permissions checks in the readfile and unlink functions in all versions up to, and including, 4.962. This makes it...