CVE-2024-12272 | WP Travel Engine Plugin up to 1.3.7 on WordPress file inclusion

Inserito da Angelo Barbosa | Dic 24, 2024 | CVE

A vulnerability classified as critical was found in WP Travel Engine Plugin up to 1.3.7 on WordPress. Affected by this vulnerability is an unknown functionality. The manipulation leads to file inclusion.

This vulnerability is known as CVE-2024-12272. The attack can be launched remotely. There is no exploit available.

CVE-2024-12272 | WP Travel Engine Plugin up to 1.3.7 on WordPress file inclusion

Post correlati

CVE-2024-9262 | User Meta Plugin up to 3.1 on WordPress resource injection

CVE-2024-40394 | Simple Library Management System 1.0 ajax.php unrestricted upload

CVE-2023-6231 | Canon Satera LBP670C up to 03.07 WSD Probe Request Process out-of-bounds write

CVE-2024-7266 | EZD RP up to 15.83/16.14/17.1 User incorrect user management