4 matches found
CVE-2024-27971
creationtimestamp| type| source ---|---|--- 2025-02-19 21:02:48+00:00| seen| https://bsky.app/profile/beikokucyber.bsky.social/post/3likodsnukg2w...
CVE-2024-27971
CVE-2024-27971 is a path traversal causing unauthenticated local file inclusion in the WordPress plugin Premmerce Permalink Manager for WooCommerce . The issue affects versions from before 2.3.11 (i.e., up to 2.3.10) and stems from improper limitation of a pathname to a restricted directory. Publ...
CVE-2024-27971 WordPress Premmerce Permalink Manager for WooCommerce plugin <= 2.3.10 - Local File Inclusion vulnerability
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Premmerce Premmerce Permalink Manager for WooCommerce woo-permalink-manager.This issue affects Premmerce Permalink Manager for WooCommerce: from n/a through = 2.3.10...
WordPress Premmerce Permalink Manager for WooCommerce Plugin <= 2.3.10 is vulnerable to Local File Inclusion
Software Premmerce Permalink Manager for WooCommerce Type Plugin Vulnerable versions = 2.3.10 Fixed in 2.3.11 OWASP Top 10 A3: Injection Classification Local File Inclusion CVE CVE-2024-27971 Patch priority High CVSS severity High 8.3 Developer Premmerce PSID cbe4465b62ca Credits Rafie Muhammad...