CVE-2024-13791 | bitpressadmin Chat Widget Plugin up to 1.5.2 on WordPress downloadResponseFile path traversal

Posted by Angelo Barbosa | Feb 14, 2025 | CVE

A vulnerability classified as problematic has been found in bitpressadmin Chat Widget Plugin up to 1.5.2 on WordPress. This affects the function downloadResponseFile. The manipulation leads to relative path traversal.

This vulnerability is uniquely identified as CVE-2024-13791. It is possible to initiate the attack remotely. There is no exploit available.

CVE-2024-13791 | bitpressadmin Chat Widget Plugin up to 1.5.2 on WordPress downloadResponseFile path traversal

Related Posts

CVE-2023-44088 | Artica Pandora FMS up to 774 sql injection

CVE-2024-2168 | SourceCodester Online Tours & Travels Management System 1.0 HTTP POST Request expense_category.php status sql injection

CVE-2024-29936 | Blocksera Image Hover Effects Plugin up to 1.4 on WordPress cross site scripting

CVE-2024-53842 | Google Android cc_MmConManagement.c cc_SendCcImsInfoIndMsg out-of-bounds write