CVE-2024-13126

Sažetak

The Download Manager WordPress plugin before 3.3.07 doesn't prevent directory listing on web servers that don't use htaccess, allowing unauthorized access of files.

Reference

CVSS

Base:	4.6
Impact:	3.4
Exploitability:	1.2

Pristup

Vektor	Složenost	Autentikacija
NETWORK	HIGH	LOW

Impact

Povjerljivost	Cjelovitost	Dostupnost
LOW	LOW	LOW

CVSS vektor

CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:L/I:L/A:L

Zadnje važnije ažuriranje

09-04-2025 - 13:06

Objavljeno

16-03-2025 - 06:15