CVE-2024-9935

Description: The PDF Generator Addon for Elementor Page Builder plugin for WordPress is vulnerable to Path Traversal in all versions up to, and including, 1.7.5 via the rtw_pgaepb_dwnld_pdf() function. This makes it possible for unauthenticated attackers to read the contents of arbitrary files on the server, which can contain sensitive information.

Link: Visit the GitHub Repository

Language: Shell

Owner: verylazytech

Stars: 3

Forks: 0