4 matches found
System Dashboard < 2.8.15 - Admin+ Path Traversal
The System Dashboard WordPress plugin before 2.8.15 does not validate user input used in a path, which could allow high privilege users such as admin to perform path traversal attacks an read arbitrary files on the server id: CVE-2024-10708 info: name: System Dashboard 2.8.15 - Admin+ Path...
CVE-2024-10708
creationtimestamp| type| source ---|---|--- 2024-12-10 06:01:01+00:00| seen| https://infosec.exchange/users/cve/statuses/113627002384730507 2024-12-10 08:16:31+00:00| seen| https://t.me/cvedetector/12482 2025-10-08 00:18:12+00:00| confirmed|...
CVE-2024-10708 System Dashboard < 2.8.15 - Admin+ Path Traversal
The System Dashboard WordPress plugin before 2.8.15 does not validate user input used in a path, which could allow high privilege users such as admin to perform path traversal attacks an read arbitrary files on the server...
WordPress System Dashboard Plugin < 2.8.15 is vulnerable to Path Traversal
Software System Dashboard Type Plugin Vulnerable versions 2.8.15 Fixed in 2.8.15 OWASP Top 10 A4: Insecure Design Classification Path Traversal CVE CVE-2024-10708 Patch priority Low CVSS severity Low 4.9 Developer Claim ownership PSID 8350df71b2da Credits Dogus DEMIRKIRAN Required privilege...