VYPR
Unrated severityNVD Advisory· Published Aug 28, 2024· Updated Apr 8, 2026

Mollie Payments for WooCommerce <= 7.7.0 - Unauthenticated Full Path Disclosure

CVE-2024-6448

Description

The Mollie Payments for WooCommerce plugin for WordPress is vulnerable to information exposure in all versions up to, and including, 7.7.0. This is due to the error reporting being enabled by default in multiple plugin files. This makes it possible for unauthenticated attackers to obtain the full path to instances, which they may be able to use in combination with other vulnerabilities or to simplify reconnaissance work. On its own, this information is of very limited use.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

3

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.