Path Traversal Vulnerability Affects Checkout Mestres WP
CVE-2024-44030
7.2HIGH
Key Information
- Vendor
- Mestres Do WP
- Status
- Checkout Mestres WP
- Vendor
- CVE Published:
- 2 October 2024
Summary
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Mestres do WP Checkout Mestres WP allows PHP Local File Inclusion.This issue affects Checkout Mestres WP: from n/a through 8.6.
Affected Version(s)
Checkout Mestres WP <= 8.6
CVSS V3.1
Score:
7.2
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
High
User Interaction:
None
Scope:
Unchanged
Timeline
Vulnerability published.
Vulnerability Reserved.
Collectors
NVD DatabaseMitre Database
Credit
tahu.datar (Patchstack Alliance)