Vulnerability Details CVE-2024-13617
The aoa-downloadable WordPress plugin through 0.1.0 doesn't validate a parameter in its download function, allowing unauthenticated attackers to download arbitrary files from the server
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 21.3%
CVSS Severity
CVSS v3 Score 8.6
Products affected by CVE-2024-13617
-
cpe:2.3:a:osteopathic:downloadable_by_american_osteopathic_association:*