WordPress Grow by Tradedoubler Plugin < 2.0.22 - Unauthenticated Local File Inclusion

The Grow by Tradedoubler WordPress plugin through version 2.0.21 is vulnerable to Local File Inclusion via the component parameter. This makes it possible for attackers to include and execute PHP files on the server, allowing the execution of any PHP code in those files. id: CVE-2024-6460 info:...

CVE-2024-6460

The Grow by Tradedoubler WordPress plugin through 2.0.21 is vulnerable to Local File Inclusion via the component parameter. This makes it possible for attackers to include and execute PHP files on the server, allowing the execution of any PHP code in those files...

WordPress Grow by Tradedoubler plugin < 2.0.22 - Unauthenticated LFI vulnerability

Unauthenticated LFI vulnerability discovered by Project Black in WordPress Plugin Grow by Tradedoubler versions 2.0.22...

CVE-2024-6460

The Grow by Tradedoubler WordPress plugin through 2.0.21 is vulnerable to Local File Inclusion via the component parameter. This makes it possible for attackers to include and execute PHP files on the server, allowing the execution of any PHP code in those files...

CVE-2024-6460

The Grow by Tradedoubler WordPress plugin through 2.0.21 is vulnerable to Local File Inclusion via the component parameter. This makes it possible for attackers to include and execute PHP files on the server, allowing the execution of any PHP code in those files...

CVE-2024-6460 Grow by Tradedoubler <= 2.0.21 - Unauthenticated LFI

The Grow by Tradedoubler WordPress plugin through 2.0.21 is vulnerable to Local File Inclusion via the component parameter. This makes it possible for attackers to include and execute PHP files on the server, allowing the execution of any PHP code in those files...

CVE-2024-6460

The WordPress plugin Grow by Tradedoubler (versions ≤ 2.0.21) is affected by an unauthenticated Local File Inclusion via the component parameter, allowing inclusion and execution of PHP files on the server (high impact). Remediation: upgrade to version 2.0.22 or later. The CVSS in the source reco...

CVE-2024-6460 Grow by Tradedoubler <= 2.0.21 - Unauthenticated LFI

The Grow by Tradedoubler WordPress plugin through 2.0.21 is vulnerable to Local File Inclusion via the component parameter. This makes it possible for attackers to include and execute PHP files on the server, allowing the execution of any PHP code in those files...

WordPress Grow by Tradedoubler Plugin < 2.0.22 is vulnerable to Local File Inclusion

Software Grow by Tradedoubler Type Plugin Vulnerable versions 2.0.22 Fixed in 2.0.22 OWASP Top 10 A1: Injection Classification Local File Inclusion CVE CVE-2024-6460 Patch priority High CVSS severity High 8.1 Developer Claim ownership PSID 01b6350330ff Credits Project Black Required privilege...

WordPress plugin Grow by Tradedoubler 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plug-in. A security vulnerability...

PT-2024-37644 · Tradedoubler · The Grow By Tradedoubler

Name of the Vulnerable Software and Affected Versions: The Grow by Tradedoubler WordPress plugin versions 2.0.21 and earlier Description: The issue allows attackers to include and execute PHP files on the server via the component parameter, enabling the execution of any PHP code in those files...

reports.tradedoubler.com XSS vulnerability

Vulnerable URL: http://reports.tradedoubler.com/pan/programinfo?programid=%3Csvg/onload=alert%27OPENBUGBOUNTY%27%3E// Details: Description| Value ---|--- Patched:| No Latest check for patch:| 28.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| Unknown / Not...

clk.tradedoubler.com Open Redirect vulnerability

Open Bug Bounty ID: OBB-195937 Description| Value ---|--- Affected Website:| clk.tradedoubler.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| Open Redirect / CWE-601 CVSSv3 Score:| 3.4...

solutions.tradedoubler.com Open Redirect vulnerability

Open Bug Bounty ID: OBB-95175 Description| Value ---|--- Affected Website:| solutions.tradedoubler.com Vulnerable Application:| Custom Code Vulnerability Type:| Open Redirect / CWE-601 CVSSv3 Score:| 3.4 CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:N/I:L/A:N Remediation Guide:| OWASP Open Redirect Cheat...