WordPress Plugin Vulnerabilities

InfiniteWP Client < 1.13.1 - Unauthenticated Limited Directory Traversal to Arbitrary .txt File Reading

Description

The InfiniteWP Client plugin for WordPress is vulnerable to Path Traversal in all versions up to, and including, 1.13.0 via the 'historyID' parameter of the ~/debug-chart/index.php file. This makes it possible for unauthenticated attackers to read .txt files outside of the intended directory.

Affects Plugins

Plugin icon
iwp-client
Fixed in 1.13.1

References

CVE
CVE-2024-10585
URL
https://www.wordfence.com/threat-intel/vulnerabilities/id/4d2518f6-3647-4bee-a98c-ce7f30375a62

Classification

Type
LFI
OWASP top 10
A1: Injection
CWE
CWE-22
CVSS
5.3 (medium)

Miscellaneous

Original Researcher
villu164
Verified
No
WPVDB ID
69a32c9f-9771-4af9-933b-6c77ba902cd6

Timeline

Publicly Published
2025-01-07 (about 1 year ago)
Added
2025-01-07 (about 1 year ago)
Last Updated
2025-01-08 (about 1 year ago)

Other

Published
Title
Published
2023-03-13
Title
Shopping Cart & eCommerce Store < 5.4.3 - Admin+ LFI
Published
2025-08-01
Title
Woffice Core < 5.4.27 - Authenticated (Contributor+) Arbitrary File Deletion
Published
2026-01-21
Title
Movie Booking < 1.1.6 - Unauthenticated Arbitrary File Deletion
Published
2015-06-23
Title
wp-instance-rename <= 1.0 - Arbitrary File Download
Published
2025-06-13
Title
Restrict File Access <= 1.1.2 - Authenticated (Subscriber+) Arbitrary File Read