Lucene search
PatchstackCVE-2024-24869HistoryMay 17, 2024 - 9:15 a.m.
CVE-2024-24869
2024-05-1709:15:23
CWE-22
Patchstack
web.nvd.nist.gov
45
cve-2024-24869
reserved
organization
individual
security problem
publicized
details
nvd
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
AI Score
6.7
Confidence
High
EPSS
0
Percentile
10.5%
Improper Limitation of a Pathname to a Restricted Directory (‘Path Traversal’) vulnerability in BoldGrid Total Upkeep allows Relative Path Traversal.This issue affects Total Upkeep: from n/a through 1.15.8.
Affected configurations
Node
boldgridtotal_upkeepRange≤1.15.8wordpress
| Vendor | Product | Version | CPE |
|---|---|---|---|
| boldgrid | total_upkeep | * | cpe:2.3:a:boldgrid:total_upkeep:*:*:*:*:*:wordpress:*:* |
CNA Affected
[
{
"collectionURL": "https://wordpress.org/plugins",
"defaultStatus": "unaffected",
"packageName": "boldgrid-backup",
"product": "Total Upkeep",
"vendor": "BoldGrid",
"versions": [
{
"changes": [
{
"at": "1.15.9",
"status": "unaffected"
}
],
"lessThanOrEqual": "1.15.8",
"status": "affected",
"version": "n/a",
"versionType": "custom"
}
]
}
]Related
cvelist
cvelist
vulnrichment
vulnrichment
nvd
nvd
CVE-2024-24869
2024-05-17 09:15:23
wpvulndb
wpvulndb
wordfence
wordfence
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
AI Score
6.7
Confidence
High
EPSS
0
Percentile
10.5%
Related for CVE-2024-24869