CVE-2024-38704
CVE-2024-38704 — An improper limitation of a pathname to a restricted directory (Path Traversal) vulnerability enables PHP Local File Inclusion in the WordPress Team Manager plugin. The issue affects WordPress Team Manager (WP-Team-Manager) versions up to 2.1.12 and is exploitable by an authentic...