Unrated severityNVD Advisory· Published Aug 19, 2024· Updated Aug 19, 2024
GEO my WordPress < 4.4.0.2 - Unauthenticated RCE via LFI
CVE-2024-6330
Description
The GEO my WP WordPress plugin before 4.5.0.2 does not prevent unauthenticated attackers from including arbitrary files in PHP's execution context, which leads to Remote Code Execution.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2<4.5.0.2+ 1 more
- (no CPE)range: <4.5.0.2
- (no CPE)range: 0
Patches
Vulnerability mechanics
References
1- wpscan.com/vulnerability/95b532e0-1ffb-421e-b9c0-de03f89491d7/mitreexploitvdb-entrytechnical-description
News mentions
0No linked articles in our index yet.