CVE-2024-52444

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Nov 20, 2024

Updated: Nov 21, 2024

CWE ID 22

Summary

CVE-2024-52444 is a newly disclosed Path Traversal vulnerability that affects WP Opal Woo Custom Product Variation. This issue arises due to the software's failure to properly limit file paths to a restricted directory. An attacker can exploit this vulnerability to traverse and potentially access sensitive files, posing a risk to data confidentiality. Affected versions of WP Opal Woo Custom Product Variation range from n/a to 1.1.3. Users are advised to update to a patched version as soon as possible to mitigate this security risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/0a4Ofs
https://www.cve.org/CVERecord?id=CVE-2024-52444
https://nvd.nist.gov/vuln/detail/CVE-2024-52444

Back to Vulnerability Database

CVE-2024-52444

CVSS 3.1 Score 7.5 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations