4 matches found
CVE-2024-35778
Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in John West Slideshow SE PHP Local File Inclusion.This issue affects Slideshow SE: from n/a through 2.5.17...
CVE-2024-35778 WordPress Slideshow SE plugin <= 2.5.17 - Auth. Limited Local File Inclusion vulnerability
Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in John West Slideshow SE PHP Local File Inclusion.This issue affects Slideshow SE: from n/a through 2.5.17...
CVE-2024-35778
CVE-2024-35778 corresponds to a Path Traversal (Local File Inclusion) affecting Slideshow SE for WordPress, through version 2.5.17. The vulnerability is described as an Authenticated (Author+) LFI with path traversal in PHP. The Wordfence vulnerability listing for Slideshow SE indicates the issue...
WordPress Slideshow SE Plugin <= 2.5.17 is vulnerable to Local File Inclusion
Software Slideshow SE Type Plugin Vulnerable versions = 2.5.17 Fixed in 2.5.18 OWASP Top 10 A1: Broken Access Control Classification Local File Inclusion CVE CVE-2024-35778 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 7958c856162d Credits João Pedro S Alcântara Kinorth...