Lucene search
+L

6 matches found

RedhatCVE
RedhatCVE
added 2025/02/05 10:18 a.m.14 views

CVE-2024-12849

The Error Log Viewer By WP Guru plugin for WordPress is vulnerable to Arbitrary File Read in all versions up to, and including, 1.0.1.3 via the wpajaxnoprivelvwplogdownload AJAX action. This makes it possible for unauthenticated attackers to read the contents of arbitrary files on the server, whi...

7.5CVSS6.7AI score0.46858EPSS
Exploits1References1
NVD
NVD
added 2025/01/07 6:15 a.m.16 views

CVE-2024-12849

The Error Log Viewer By WP Guru plugin for WordPress is vulnerable to Arbitrary File Read in all versions up to, and including, 1.0.1.3 via the wpajaxnoprivelvwplogdownload AJAX action. This makes it possible for unauthenticated attackers to read the contents of arbitrary files on the server, whi...

7.5CVSS0.46858EPSS
Exploits1References4
Circl
Circl
added 2025/01/07 5:38 a.m.15 views

CVE-2024-12849

creationtimestamp| type| source ---|---|--- 2025-01-07 05:38:55+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/343 2025-01-07 06:16:27+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lf4yrq7eak2m 2025-01-07 06:33:54+00:00| seen|...

7.5CVSS7.9AI score0.46858EPSS
Exploits1References8
Vulnrichment
Vulnrichment
added 2025/01/07 5:23 a.m.12 views

CVE-2024-12849 Error Log Viewer By WP Guru <= 1.0.1.3 - Missing Authorization to Unauthenticated Arbitrary File Read

The Error Log Viewer By WP Guru plugin for WordPress is vulnerable to Arbitrary File Read in all versions up to, and including, 1.0.1.3 via the wpajaxnoprivelvwplogdownload AJAX action. This makes it possible for unauthenticated attackers to read the contents of arbitrary files on the server, whi...

7.5CVSS7.4AI score0.46858EPSS
Exploits1References4
Cvelist
Cvelist
added 2025/01/07 5:23 a.m.33 views

CVE-2024-12849 Error Log Viewer By WP Guru <= 1.0.1.3 - Missing Authorization to Unauthenticated Arbitrary File Read

The Error Log Viewer By WP Guru plugin for WordPress is vulnerable to Arbitrary File Read in all versions up to, and including, 1.0.1.3 via the wpajaxnoprivelvwplogdownload AJAX action. This makes it possible for unauthenticated attackers to read the contents of arbitrary files on the server, whi...

7.5CVSS0.46858EPSS
Exploits1References4
0day.today
0day.today
added 2025/01/02 12:0 a.m.236 views

WordPress Error Log Viewer by WP Guru 1.0.1.3 Arbitrary File Read Vulnerability

CVE-2024-12849 Error Log Viewer By WP Guru = 1.0.1.3 - Missing Authorization to Unauthenticated Arbitrary File Read Description The Error Log Viewer By WP Guru plugin for WordPress is vulnerable to Arbitrary File Read in all versions up to, and including, 1.0.1.3 via the...

7.5CVSS7.1AI score0.46858EPSS
Exploits1
Rows per page
Query Builder