CVE-2024-13471 | designthemes DesignThemes Core Features Plugin up to 4.7 on WordPress dt_process_imported_file path traversal

Posted by Angelo Barbosa | Mar 5, 2025 | CVE

A vulnerability classified as critical was found in designthemes DesignThemes Core Features Plugin up to 4.7 on WordPress. Affected by this vulnerability is the function dt_process_imported_file. The manipulation leads to path traversal.

This vulnerability is known as CVE-2024-13471. The attack can be launched remotely. There is no exploit available.

CVE-2024-13471 | designthemes DesignThemes Core Features Plugin up to 4.7 on WordPress dt_process_imported_file path traversal

Related Posts

CVE-2023-22655 | Intel Xeon SGX/TDX protection mechanism (intel-sa-00960)

CVE-2024-49521 | Adobe Commerce up to 3.2.5 Requests server-side request forgery (apsb24-90)

CVE-2023-45597 | AiLux imx6 up to 1.0.7-1 file_configuration csv injection

CVE-2024-36140 | Siemens OZW672/OZW772 up to 5.1 cross site scripting (ssa-230445)