Lucene search
K

6 matches found

NVD
NVD
added 2024/06/21 4:15 p.m.16 views

CVE-2024-35781

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in YAHMAN Word Balloon allows PHP Local File Inclusion.This issue affects Word Balloon: from n/a through 4.21.1...

6.5CVSS0.00511EPSS
Exploits0References1
OSV
OSV
added 2024/06/21 4:15 p.m.4 views

CVE-2024-35781

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in YAHMAN Word Balloon allows PHP Local File Inclusion.This issue affects Word Balloon: from n/a through 4.21.1...

6.5CVSS5.8AI score0.00511EPSS
Exploits0References1
CVE
CVE
added 2024/06/21 4:4 p.m.56 views

CVE-2024-35781

CVE-2024-35781 is a Word Balloon WordPress plugin vulnerability (authenticated) that allows PHP Local File Inclusion due to improper pathname limitation. Affected: Word Balloon up to and including version 4.21.1. Root cause: path traversal restricting access to restricted directories is insuffici...

6.5CVSS6.8AI score0.00511EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2024/06/21 4:4 p.m.19 views

CVE-2024-35781 WordPress Word Balloon plugin <= 4.21.1 - Local File Inclusion vulnerability

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in YAHMAN Word Balloon allows PHP Local File Inclusion.This issue affects Word Balloon: from n/a through 4.21.1...

6.5CVSS0.00511EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/06/21 4:4 p.m.11 views

CVE-2024-35781 WordPress Word Balloon plugin <= 4.21.1 - Local File Inclusion vulnerability

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in YAHMAN Word Balloon allows PHP Local File Inclusion.This issue affects Word Balloon: from n/a through 4.21.1...

6.5CVSS6.9AI score0.00511EPSS
Exploits0References1
Patchstack
Patchstack
added 2024/06/19 12:0 a.m.10 views

WordPress Word Balloon Plugin <= 4.21.1 is vulnerable to Local File Inclusion

Software Word Balloon Type Plugin Vulnerable versions = 4.21.1 Fixed in 4.22.0 OWASP Top 10 A6: Security Misconfiguration Classification Local File Inclusion CVE CVE-2024-35781 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 2b66b1bcd514 Credits João Pedro S Alcântara...

6.5CVSS6.6AI score0.00511EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder