CVE-2024-6306 | WordPress up to 6.5.4 Template Part Block path traversal (ID 58470)

Posted by Angelo Barbosa | Jun 25, 2024 | CVE

A vulnerability has been found in WordPress and classified as critical. Affected by this vulnerability is an unknown functionality of the component Template Part Block. The manipulation leads to path traversal.

This vulnerability is known as CVE-2024-6306. The attack can be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-6306 | WordPress up to 6.5.4 Template Part Block path traversal (ID 58470)

Related Posts

CVE-2023-52168 | 7-Zip up to 24.00 NTFS NtfsHandler.cpp heap-based overflow

CVE-2024-6576 | Progress MOVEit Transfer prior 2023.0.12/2023.1.7/2024.0.3 SFTP Module improper authentication

CVE-2024-1089 | ImageRecycle PDF & Image Compression Plugin up to 3.1.13 on WordPress Setting optimizeAllOn authorization

CVE-2023-48712 | warp-tech warpgate up to 0.8.x authorization (GHSA-c94j-vqr5-3mxr)