Relative Path Traversal Vulnerability in Astoundify Jobify Theme
CVE-2024-52481
7.5HIGH
Key Information:
- Vendor
Wordpress
- Vendor
- CVE Published:
- 28 November 2024
What is CVE-2024-52481?
A vulnerability exists in Astoundify's Jobify - Job Board WordPress Theme due to improper restrictions on pathname handling, which may permit attackers to perform relative path traversal. This flaw enables unauthorized access to files outside the expected directory, potentially compromising sensitive information. Users running Jobify versions up to 4.2.3 should be aware of this issue and take action to mitigate risk.
Affected Version(s)
Jobify - Job Board WordPress Theme <= 4.2.3