CVE-2024-35634

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Wow-Company Woocommerce – Recent Purchases allows PHP Local File Inclusion.This issue affects Woocommerce – Recent Purchases: from n/a through 1.0.1.
Configurations

Configuration 1 (hide)

cpe:2.3:a:wow-company:woocommerce_-_recent_purchases:*:*:*:*:*:wordpress:*:*

History

21 Nov 2024, 09:20

Type Values Removed Values Added
References () https://patchstack.com/database/vulnerability/woo-recent-purchases/woocommerce-recent-purchases-plugin-1-0-1-file-inclusion-vulnerability?_s_id=cve - Third Party Advisory () https://patchstack.com/database/vulnerability/woo-recent-purchases/woocommerce-recent-purchases-plugin-1-0-1-file-inclusion-vulnerability?_s_id=cve - Third Party Advisory

10 Jun 2024, 20:23

Type Values Removed Values Added
Summary
  • (es) Limitación inadecuada de un nombre de ruta a una vulnerabilidad de directorio restringido ("Path Traversal") en Wow-Company Woocommerce – Recent Purchases permite la inclusión de archivos locales PHP. Este problema afecta a Woocommerce – Recent Purchases: desde n/a hasta 1.0.1.
CPE cpe:2.3:a:wow-company:woocommerce_-_recent_purchases:*:*:*:*:*:wordpress:*:*
References () https://patchstack.com/database/vulnerability/woo-recent-purchases/woocommerce-recent-purchases-plugin-1-0-1-file-inclusion-vulnerability?_s_id=cve - () https://patchstack.com/database/vulnerability/woo-recent-purchases/woocommerce-recent-purchases-plugin-1-0-1-file-inclusion-vulnerability?_s_id=cve - Third Party Advisory
First Time Wow-company
Wow-company woocommerce - Recent Purchases

04 Jun 2024, 14:15

Type Values Removed Values Added
New CVE

Information

Published : 2024-06-04 14:15

Updated : 2024-11-21 09:20


NVD link : CVE-2024-35634

Mitre link : CVE-2024-35634

CVE.ORG link : CVE-2024-35634


JSON object : View

Products Affected

wow-company

  • woocommerce_-_recent_purchases
CWE
CWE-22

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')