WordPress Plugin Vulnerabilities

Bit Assist < 1.5.3 - Admin+ Arbitrary File Read

Description

The plugin is vulnerable to Path Traversal via the downloadResponseFile() function. This makes it possible for authenticated attackers, with Administrator-level access and above, to read the contents of arbitrary files on the server, which can contain sensitive information.

Affects Plugins

Plugin icon
bit-assist
Fixed in 1.5.3

References

CVE
CVE-2024-13791
URL
https://www.wordfence.com/threat-intel/vulnerabilities/id/17fd14e7-503a-49e4-9344-5f8d51801eb3

Classification

Type
TRAVERSAL
OWASP top 10
A1: Injection
CWE
CWE-22
CVSS
4.9 (medium)

Miscellaneous

Original Researcher
koffee
Verified
No
WPVDB ID
ee17e5f5-7748-4447-8d39-6580fd3e0220

Timeline

Publicly Published
2025-02-13 (about 1 year ago)
Added
2025-02-14 (about 1 year ago)
Last Updated
2025-02-14 (about 1 year ago)

Other

Published
Title
Published
2023-11-06
Title
Mmm Simple File List <= 2.3 - Subscriber+ Arbitrary Directory Listing
Published
2022-09-06
Title
BackupBuddy < 8.7.5 - Unauthenticated Arbitrary File Access
Published
2019-03-14
Title
SG Optimizer <= 5.0.12 - Unauthenticated File Upload
Published
2023-05-16
Title
WP < 6.2.1 - Directory Traversal via Translation Files
Published
2022-12-12
Title
Wholesale Market for WooCommerce < 2.0.0 - Admin+ Arbitrary Log Download