Path Traversal Vulnerability in WooCommerce OpenPos Allows File Manipulation
CVE-2024-37932
8.6HIGH
What is CVE-2024-37932?
The vulnerability in Woocommerce OpenPos, developed by AnhVnit, allows for the improper limitation of a pathname to a restricted directory, commonly known as a 'Path Traversal' issue. This flaw enables unauthorized users to manipulate files within the system. Specifically, it affects versions from 'n/a' to 6.4.4. As a result, entities utilizing these versions of Woocommerce OpenPos face security risks, including potential data breaches and unauthorized file access.
Affected Version(s)
Woocommerce OpenPos <= 6.4.4