Path Traversal Vulnerability in VibeThemes WPLMS
CVE-2024-56049

Currently unrated

Key Information:

Vendor: VibeThemes
Vendor: CVE Published:; 18 December 2024

What is CVE-2024-56049?

The Path Traversal vulnerability in VibeThemes WPLMS enables attackers to exploit insecure file access mechanisms. This flaw allows unauthorized users to traverse the directory structure of the affected installation, potentially accessing sensitive files outside the intended file system boundaries. As this issue affects all versions of WPLMS prior to 1.9.9.5.2, it poses a significant risk for WordPress sites leveraging this theme. Website administrators should take immediate action to update to a secure version to mitigate potential threats.

References

https://patchstack.com/database/wordpress/plugin/wplms-pl...

Timeline

Vulnerability published
Dec 18, 2024