CVE-2024-10871 | trustyplugins Category Ajax Filter Plugin up to 2.8.2 on WordPress filename control

Inserito da Angelo Barbosa | Nov 9, 2024 | CVE

A vulnerability was found in trustyplugins Category Ajax Filter Plugin up to 2.8.2 on WordPress. It has been rated as problematic. This issue affects some unknown processing. The manipulation leads to improper control of filename for include/require statement in php program (‘php remote file inclusion’).

The identification of this vulnerability is CVE-2024-10871. The attack needs to be approached locally. There is no exploit available.

CVE-2024-10871 | trustyplugins Category Ajax Filter Plugin up to 2.8.2 on WordPress filename control

Post correlati

CVE-2023-44452 | Linux Mint Xreader CBT File Parser argument injection (ZDI-23-1836)

VDB-278831 | Backdoor.Win32.Boiling Service Port 4369 backdoor

CVE-2023-7221 | Totolink T6 4.1.9cu.5241_B20210923 HTTP POST Request cstecgi.cgi main v41 buffer overflow

CVE-2024-42427 | Dell Wyse Proprietary OS 2402/2405 command injection (dsa-2024-386)