CVE-2024-13791 | bitpressadmin Chat Widget Plugin up to 1.5.2 on WordPress downloadResponseFile path traversal

Posted by Angelo Barbosa | Feb 14, 2025 | CVE

A vulnerability classified as problematic has been found in bitpressadmin Chat Widget Plugin up to 1.5.2 on WordPress. This affects the function downloadResponseFile. The manipulation leads to relative path traversal.

This vulnerability is uniquely identified as CVE-2024-13791. It is possible to initiate the attack remotely. There is no exploit available.

CVE-2024-13791 | bitpressadmin Chat Widget Plugin up to 1.5.2 on WordPress downloadResponseFile path traversal

Related Posts

CVE-2025-24504 | Broadcom Symantec Privileged Access Management up to 3.4.6/4.1.8/4.2.0 Application Log input validation

CVE-2024-6935 | formtools.org Form Tools 3.1.1 User Settings Page /admin/clients/ cross site scripting

CVE-2024-6016 | itsourcecode Online Laundry Management System 1.0 admin_class.php id sql injection

CVE-2025-0487 | Fanli2012 native-php-cms 1.0 /fladmin/cat_edit.php id sql injection