CVE-2024-54216: WordPress ARForms plugin <= 6.4.1 - Arbitrary File Read vulnerability

7.7 CVSS

Description

Path Traversal: '.../...//' vulnerability in Repute InfoSystems ARForms allows Path Traversal.This issue affects ARForms: from n/a through 6.4.1.

CVSS Base Severity: HIGH

CVSS Base Score: 7.7

Vendor: Repute InfoSystems

Product: ARForms

EPSS Score: 0.04% (probability of being exploited)

EPSS Percentile: 11.48% (scored less or equal to compared to others)

EPSS Date: 2025-02-04 (when was this score calculated)

2024-12-07 00:31:27 UTC
CVE

WordPress ARForms plugin <= 6.4.1 - Subscriber+ Arbitrary File Read vulnerability
2024-12-10 00:31:43 UTC
CVE

WordPress ARForms plugin <= 6.4.1 - Arbitrary File Read vulnerability
2024-12-21 00:30:37 UTC
CVE

WordPress ARForms plugin <= 6.4.1 - Arbitrary File Read vulnerability