VYPR
Unrated severityNVD Advisory· Published Aug 19, 2024· Updated Aug 19, 2024

GEO my WordPress < 4.4.0.2 - Unauthenticated RCE via LFI

CVE-2024-6330

Description

The GEO my WP WordPress plugin before 4.5.0.2 does not prevent unauthenticated attackers from including arbitrary files in PHP's execution context, which leads to Remote Code Execution.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.