High severity8.6NVD Advisory· Published Mar 25, 2025· Updated Jun 17, 2026
CVE-2024-13617
CVE-2024-13617
Description
The aoa-downloadable WordPress plugin through 0.1.0 doesn't validate a parameter in its download function, allowing unauthenticated attackers to download arbitrary files from the server
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2(expand)+ 1 more
- (no CPE)
- (no CPE)range: <=0.1.0
Patches
Vulnerability mechanics
References
1- wpscan.com/vulnerability/8d6dd979-21ef-4d14-9c42-bbd1d7b65c53/nvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.