Path Traversal Vulnerability Affects Rehub
CVE-2024-31231

9CRITICAL

Key Information:

Vendor: WordPress
Status: Rehub
Vendor: CVE Published:; 17 May 2024

Summary

The vulnerability in the Sizam Design Rehub product stems from improper restrictions on pathname accessibility, allowing unauthorized access to sensitive files. This Path Traversal issue can be exploited by attackers to execute local file inclusion, potentially compromising the security of the web application. It affects versions of the Rehub product from n/a through 19.6.1, posing significant risks if not addressed. Proper security measures and patches are essential to safeguard the affected systems from exploitation.

Affected Version(s)

Rehub <= 19.6.1

References

https://patchstack.com/database/vulnerability/rehub-theme...

vdb-entry

CVSS V3.1

Score:

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

High

Privileges Required:

None

User Interaction:

None

Scope:

Changed

Timeline

Vulnerability published
May 17, 2024
Vulnerability Reserved
Mar 29, 2024

Credit

Rafie Muhammad (Patchstack)