A vulnerability classified as critical was found in YAHMAN Word Balloon Plugin up to 4.21.1 on WordPress. This vulnerability affects unknown code. The manipulation leads to path traversal.
This vulnerability was named CVE-2024-35781. The attack can be initiated remotely. There is no exploit available.