CVE-2024-52381 | Shoaib Rehmat ZIJ Kart Plugin up to 1.1 on WordPress filename control

Posted by Angelo Barbosa | Nov 14, 2024 | CVE

A vulnerability was found in Shoaib Rehmat ZIJ Kart Plugin up to 1.1 on WordPress and classified as problematic. This issue affects some unknown processing. The manipulation leads to improper control of filename for include/require statement in php program (‘php remote file inclusion’).

The identification of this vulnerability is CVE-2024-52381. The attack may be initiated remotely. There is no exploit available.

CVE-2024-52381 | Shoaib Rehmat ZIJ Kart Plugin up to 1.1 on WordPress filename control

Related Posts

CVE-2024-6484 | Bootstrap up to 3.4.1 cross site scripting

CVE-2024-32759 | Johnson Controls Software House CCURE 9000 Installer weak credentials (icsa-24-191-04)

CVE-2024-31937 | Visitor Analytics TWIPLA Plugin up to 1.2.0 on WordPress cross site scripting

CVE-2024-42545 | TOTOLINK A3700R 9.1.2u.5822_B20200513 setWizardCfg ssid buffer overflow