5 matches found
CVE-2024-35634
Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Wow-Company Woocommerce – Recent Purchases allows PHP Local File Inclusion.This issue affects Woocommerce – Recent Purchases: from n/a through 1.0.1...
CVE-2024-35634 Woocommerce – Recent Purchases plugin <= 1.0.1 - File Inclusion vulnerability
Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Wow-Company Woocommerce – Recent Purchases allows PHP Local File Inclusion.This issue affects Woocommerce – Recent Purchases: from n/a through 1.0.1...
CVE-2024-35634
CVE-2024-35634 affects the Woocommerce – Recent Purchases plugin for WordPress (versions ≤ 1.0.1). It is a Local File Inclusion due to improper pathname limitation, enabling an authenticated Administrator to include arbitrary server files via path traversal. The Wordfence entry indicates this vul...
CVE-2024-35634 Woocommerce – Recent Purchases plugin <= 1.0.1 - File Inclusion vulnerability
Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Wow-Company Woocommerce – Recent Purchases allows PHP Local File Inclusion.This issue affects Woocommerce – Recent Purchases: from n/a through 1.0.1...
WordPress Woocommerce – Recent Purchases Plugin <= 1.0.1 is vulnerable to Local File Inclusion
Software Woocommerce – Recent Purchases Type Plugin Vulnerable versions = 1.0.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Local File Inclusion CVE CVE-2024-35634 Patch priority Low CVSS severity Low 4.9 Developer Claim ownership PSID 2f3df66f0e0f Credits YCInfosec Required privilege...