CVE-2024-8304 | jpress up to 5.1.1 Template Module /admin/template/edit path traversal (Issue 189)

Posted by Angelo Barbosa | Aug 29, 2024 | CVE

A vulnerability has been found in jpress up to 5.1.1 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /admin/template/edit of the component Template Module Handler. The manipulation leads to path traversal.

This vulnerability is known as CVE-2024-8304. The attack can be launched remotely. Furthermore, there is an exploit available.

CVE-2024-8304 | jpress up to 5.1.1 Template Module /admin/template/edit path traversal (Issue 189)

Related Posts

CVE-2024-33929 | wpWax Directorist Plugin up to 7.8.6 on WordPress authorization

CVE-2024-31673 | Kliqqi CMS 2.0.2 load_data.php userid sql injection

CVE-2024-20251 | Cisco Identity Services Engine Web-based Management Interface cross site scripting (cisco-sa-ISE-XSS-bL4VTML)

CVE-2024-7291 | JetFormBuilder Plugin up to 3.3.4.1 on WordPress Privilege Escalation