CVE-2024-54374 WordPress Sogrid plugin <= 1.5.6 - Local File Inclusion vulnerability

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Sabri Sogrid sogrid allows PHP Local File Inclusion.This issue affects Sogrid: from n/a through = 1.5.6...

CVE-2024-54352

CVE-2024-54352 – Sogrid CSRF to Privilege Escalation (WordPress plugin) Affected: Sogrid (WordPress plugin) versions up to 1.5.2. Issue: Cross-Site Request Forgery vulnerability that enables privilege escalation within Sogrid. Impact: High (I/H, C/H, A/H per CVSS 3.1 metrics) with potential unaut...

WordPress Sogrid plugin <= 1.5.6 - Authenticated (Admin+) Local File Inclusion vulnerability

Authenticated Admin+ Local File Inclusion vulnerability discovered by paulmockford in WordPress Plugin Sogrid versions = 1.5.6...

WordPress Sogrid Plugin <= 1.5.6 is vulnerable to Local File Inclusion

Software Sogrid Type Plugin Vulnerable versions = 1.5.6 Fixed in 1.5.7 OWASP Top 10 A1: Injection Classification Local File Inclusion CVE CVE-2024-8392 Patch priority Low CVSS severity Low 7.2 Developer Claim ownership PSID 1c3f3f9f16d6 Credits paulmockford Required privilege Administrator...