Vulnerabilities > CVE-2024-35754 - Unspecified vulnerability in Ovic Importer Project Ovic Importer 1.6.3

CVSS 6.5 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

HIGH

Integrity impact

NONE

Availability impact

NONE

network

low complexity

ovic-importer-project

NVD

Published: 2024-06-10

Updated: 2024-11-21

Summary

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Ovic Team Ovic Importer allows Path Traversal.This issue affects Ovic Importer: from n/a through 1.6.3.

Vulnerable Configurations

Part	Description	Count
Application	Ovic_Importer_Project Ovic Importer Project Ovic Importer - Ovic Importer Project Ovic Importer 1.6.3	2

References

https://patchstack.com/database/vulnerability/ovic-import-demo/wordpress-ovic-importer-plugin-1-6-3-arbitrary-file-download-vulnerability?_s_id=cve
https://patchstack.com/database/vulnerability/ovic-import-demo/wordpress-ovic-importer-plugin-1-6-3-arbitrary-file-download-vulnerability?_s_id=cve