Lucene search
+L

5 matches found

nvd
nvd
added 2024/08/01 9:15 p.m.16 views

CVE-2024-38772

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Crocoblock JetWidgets for Elementor and WooCommerce allows PHP Local File Inclusion.This issue affects JetWidgets for Elementor and WooCommerce: from n/a through 1.1.7...

6.5CVSS0.00498EPSS
Exploits0References1
cve
cve
added 2024/08/01 8:49 p.m.49 views

CVE-2024-38772

CVE-2024-38772 is a Path Traversal vulnerability in Crocoblock JetWidgets for Elementor and WooCommerce. Affected: JetWidgets for Elementor and WooCommerce versions up to 1.1.7. Root cause: improper limitation of a pathname to a restricted directory, enabling PHP local file inclusion. Impact: pot...

6.5CVSS6.6AI score0.00498EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2024/08/01 8:49 p.m.19 views

CVE-2024-38772 WordPress JetWidgets for Elementor and WooCommerce plugin <= 1.1.7 - Contributor+ Limited Local File Inclusion vulnerability

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Crocoblock JetWidgets for Elementor and WooCommerce allows PHP Local File Inclusion.This issue affects JetWidgets for Elementor and WooCommerce: from n/a through 1.1.7...

6.5CVSS7.2AI score0.00498EPSS
Exploits0References1
cvelist
cvelist
added 2024/08/01 8:49 p.m.32 views

CVE-2024-38772 WordPress JetWidgets for Elementor and WooCommerce plugin <= 1.1.7 - Contributor+ Limited Local File Inclusion vulnerability

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Crocoblock JetWidgets for Elementor and WooCommerce allows PHP Local File Inclusion.This issue affects JetWidgets for Elementor and WooCommerce: from n/a through 1.1.7...

6.5CVSS0.00498EPSS
Exploits0References1
patchstack
patchstack
added 2024/07/19 12:0 a.m.23 views

WordPress JetWidgets for Elementor and WooCommerce Plugin <= 1.1.7 is vulnerable to Local File Inclusion

Software JetWidgets for Elementor and WooCommerce Type Plugin Vulnerable versions = 1.1.7 Fixed in 1.1.8 OWASP Top 10 A1: Broken Access Control Classification Local File Inclusion CVE CVE-2024-38772 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 8f1a24339fa6 Credits João...

6.5CVSS6.6AI score0.00498EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder