Unrated severityNVD Advisory· Published Aug 28, 2024· Updated Apr 8, 2026
Mollie Payments for WooCommerce <= 7.7.0 - Unauthenticated Full Path Disclosure
CVE-2024-6448
Description
The Mollie Payments for WooCommerce plugin for WordPress is vulnerable to information exposure in all versions up to, and including, 7.7.0. This is due to the error reporting being enabled by default in multiple plugin files. This makes it possible for unauthenticated attackers to obtain the full path to instances, which they may be able to use in combination with other vulnerabilities or to simplify reconnaissance work. On its own, this information is of very limited use.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3- Range: <=7.7.0
- mollieintegration/Mollie Payments for WooCommercev5Range: 0
Patches
Vulnerability mechanics
References
3News mentions
0No linked articles in our index yet.