CVE-2024-37501

Description

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in PluginsWare Advanced Classifieds & Directory Pro allows Path Traversal.This issue affects Advanced Classifieds & Directory Pro: from n/a through 3.1.3.

CVSS breakdown

CVSS 3.1

Attack Vector

Network

Attack Complexity

High

Privileges Required

Low

User Interaction

None

Scope

Changed

Confidentiality

High

Integrity

High

Availability

High

Affected products

pluginsware / Advanced Classifieds & Directory Pron/a – 3.1.3

References

MISChttps://patchstack.com/database/vulnerability/advanced-classifieds-and-directory-pro/wordpress-advanced-classifieds-directory-pro-plugin-3-1-3-local-file-inclusion-vulnerability?_s_id=cve