Untriaged
Permalink
CVE-2024-54225
7.5 HIGH
- CVSS version: 3.1
- Attack vector (AV): NETWORK
- Attack complexity (AC): HIGH
- Privileges required (PR): LOW
- User interaction (UI): NONE
- Scope (S): UNCHANGED
- Confidentiality impact (C): HIGH
- Integrity impact (I): HIGH
- Availability impact (A): HIGH
WordPress Designer plugin <= 1.3.3 - Local File Inclusion vulnerability
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in CodegearThemes Designer allows PHP Local File Inclusion.This issue affects Designer: from n/a through 1.3.3.
References
Affected products
designer
- =<1.3.3
Matching in nixpkgs
pkgs.libsForQt5.kdesignerplugin
None
-
nixos-unstable -
- nixpkgs-unstable 5.116.0
pkgs.plasma5Packages.kdesignerplugin
None
-
nixos-unstable -
- nixpkgs-unstable 5.116.0
Package maintainers
-
@nyanloutre Paul Trehiou <paul@nyanlout.re>
-
@ttuegel Thomas Tuegel <ttuegel@mailbox.org>