Security Advisory

CVE-2024-6164

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-07-18 06:00:04

Last updated 2024-08-01 21:33:04

Assigner WPScan

State PUBLISHED

Description

The Filter & Grids WordPress plugin before 2.8.33 is vulnerable to Local File Inclusion via the post_layout parameter. This makes it possible for an unauthenticated attacker to include and execute PHP files on the server, allowing the execution of any PHP code in those files.

← Browse all CVEs View on cve.org ↗