2 matches found
PT-2025-33508
Name of the Vulnerable Software and Affected Versions: go-getter versions prior to 1.7.9 Description: The go-getter library subdirectory download feature is susceptible to symlink attacks, potentially allowing unauthorized read access beyond the intended directory boundaries. Recommendations:...
PT-2021-16264
Name of the Vulnerable Software and Affected Versions: The Redirect 404 Error Page to Homepage or Custom Page with Logs WordPress plugin versions prior to 1.7.9 Description: The issue concerns a lack of CSRF check when deleting logs, which could allow an attacker to make a logged-in admin delete...