Vulnerabilities > CVE-2024-34554 - Unspecified vulnerability in Select-Themes Stockholm Core 2.4.1

CVSS 8.8 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

network

low complexity

select-themes

NVD

Published: 2024-06-04

Updated: 2024-11-21

Summary

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Select-Themes Stockholm Core allows PHP Local File Inclusion.This issue affects Stockholm Core: from n/a through 2.4.1.

Vulnerable Configurations

Part	Description	Count
Application	Select-Themes Select Themes Stockholm Core - Select Themes Stockholm Core 2.4.1	2

References

https://patchstack.com/database/vulnerability/stockholm-core/wordpress-stockholm-core-plugin-2-4-1-local-file-inclusion-vulnerability?_s_id=cve
https://patchstack.com/database/vulnerability/stockholm-core/wordpress-stockholm-core-plugin-2-4-1-local-file-inclusion-vulnerability?_s_id=cve