The Web Directory Free WordPress plugin before 1.7.3 does not validate a parameter before using it in an include(), which could lead to Local File Inclusion issues.
Metrics
Affected Vendors & Products
References
History
Fri, 30 Aug 2024 19:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Salephpscripts
Salephpscripts web Directory Free |
|
CPEs | cpe:2.3:a:salephpscripts:web_directory_free:*:*:*:*:*:*:*:* | |
Vendors & Products |
Salephpscripts
Salephpscripts web Directory Free |
|
Metrics |
cvssV3_1
|
Fri, 30 Aug 2024 06:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | The Web Directory Free WordPress plugin before 1.7.3 does not validate a parameter before using it in an include(), which could lead to Local File Inclusion issues. | |
Title | Web Directory Free < 1.7.3 - Unauthenticated LFI | |
References |
|
MITRE
Status: PUBLISHED
Assigner: WPScan
Published: 2024-08-30T06:00:02.162Z
Updated: 2024-08-30T18:16:23.243Z
Reserved: 2024-04-11T19:33:32.033Z
Link: CVE-2024-3673
Vulnrichment
Updated: 2024-08-30T18:16:11.547Z
NVD
Status : Awaiting Analysis
Published: 2024-08-30T06:15:05.400
Modified: 2024-08-30T19:35:06.567
Link: CVE-2024-3673
Redhat
No data.