Vulnerability Details CVE-2024-31240
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in InfoTheme WP Poll Maker.This issue affects WP Poll Maker: from n/a through 3.1.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 53.6%
CVSS Severity
CVSS v3 Score 7.7
References
- https://patchstack.com/database/vulnerability/epoll-wp-voting/wordpress-wp-poll-maker-plugin-3-1-subscriber-arbitrary-file-deletion-vulnerability?_s_id=cve
- https://patchstack.com/database/vulnerability/epoll-wp-voting/wordpress-wp-poll-maker-plugin-3-1-subscriber-arbitrary-file-deletion-vulnerability?_s_id=cve
Products affected by CVE-2024-31240
-
cpe:2.3:a:infotheme:wp_poll_maker:1.0
-
cpe:2.3:a:infotheme:wp_poll_maker:2.0
-
cpe:2.3:a:infotheme:wp_poll_maker:3.0
-
cpe:2.3:a:infotheme:wp_poll_maker:3.1
-
cpe:2.3:a:infotheme:wp_poll_maker:3.2
-
cpe:2.3:a:infotheme:wp_poll_maker:3.3