Security Advisory

CVE-2021-24453

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-07-19 10:53:18
Last updated 2024-08-03 19:28:24
Assigner WPScan
State PUBLISHED

Description

The Include Me WordPress plugin through 1.2.1 is vulnerable to path traversal / local file inclusion, which can lead to Remote Code Execution (RCE) of the system due to log poisoning and therefore potentially a full compromise of the underlying structure