2 matches found
CVE-2024-44048 WordPress Product Carousel Slider & Grid Ultimate for WooCommerce plugin <= 1.9.10 - Authenticated Local File Inclusion vulnerability
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in wpWax Product Carousel Slider & Grid Ultimate for WooCommerce woo-product-carousel-slider-and-grid-ultimate.This issue affects Product Carousel Slider & Grid Ultimate for...
CVE-2024-44048
CVE-2024-44048 affects WordPress plugin Product Carousel Slider & Grid Ultimate for WooCommerce (wpWax) up to version 1.9.10. The vulnerability is an Authenticated Local File Inclusion due to improper restriction of pathnames (Path Traversal) that can be exploited by users with Contributor+ privi...