BIT-wordpress-2024-32111
See a problem?- Import Source
- https://github.com/bitnami/vulndb/tree/main/data/wordpress/BIT-wordpress-2024-32111.json
- JSON Data
- https://api.osv.dev/v1/vulns/BIT-wordpress-2024-32111
- Aliases
-
- BIT-wordpress-multisite-2024-32111
- CVE-2024-32111
- Published
- 2024-06-27T07:43:09.753Z
- Modified
- 2025-05-20T10:02:07.006Z
- Summary
- WordPress core < 6.5.5 - Auth. Arbitrary .html File Read (Windows Only) vulnerability
- Details
-
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Automattic WordPress allows Relative Path Traversal.This issue affects WordPress: from 6.5 through 6.5.4, from 6.4 through 6.4.4, from 6.3 through 6.3.4, from 6.2 through 6.2.5, from 6.1 through 6.1.6, from 6.0 through 6.0.8, from 5.9 through 5.9.9, from 5.8 through 5.8.9, from 5.7 through 5.7.11, from 5.6 through 5.6.13, from 5.5 through 5.5.14, from 5.4 through 5.4.15, from 5.3 through 5.3.17, from 5.2 through 5.2.20, from 5.1 through 5.1.18, from 5.0 through 5.0.21, from 4.9 through 4.9.25, from 4.8 through 4.8.24, from 4.7 through 4.7.28, from 4.6 through 4.6.28, from 4.5 through 4.5.31, from 4.4 through 4.4.32, from 4.3 through 4.3.33, from 4.2 through 4.2.37, from 4.1 through 4.1.40.
- Database specific
{ "cpes": [ "cpe:2.3:a:wordpress:wordpress:*:*:*:*:*:*:*:*" ], "severity": "Medium" }- References
Affected packages
Bitnami / wordpress
Package
- Name
- wordpress
- Purl
- pkg:bitnami/wordpress
Severity
- 5.0 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L CVSS Calculator
Affected ranges
- Type
- SEMVER
- Events
-
Introduced4.1.0Fixed4.1.41Introduced4.2.0Fixed4.2.38Introduced4.3.0Fixed4.3.34Introduced4.4.0Fixed4.4.33Introduced4.5.0Fixed4.5.32Introduced4.6.0Fixed4.6.29Introduced4.7.0Fixed4.7.29Introduced4.8.0Fixed4.8.25Introduced4.9.0Fixed4.9.26Introduced5.0.0Fixed5.0.22Introduced5.1.0Fixed5.1.19Introduced5.2.0Fixed5.2.21Introduced5.3.0Fixed5.3.18Introduced5.4.0Fixed5.4.16Introduced5.5.0Fixed5.5.15Introduced5.6.0Fixed5.6.14Introduced5.7.0Fixed5.7.12Introduced5.8.0Fixed5.8.10Introduced5.9.0Fixed5.9.10Introduced6.0.0Fixed6.0.9Introduced6.1.0Fixed6.1.7Introduced6.2.0Fixed6.2.6Introduced6.3.0Fixed6.3.5Introduced6.4.0Fixed6.4.5Introduced6.5.0Fixed6.5.5