CVE-2024-4388 Information

Description

This does not validate a path generated with user input when downloading files allowing unauthenticated user to download arbitrary files from the server

Reference

https://wpscan.com/vulnerability/5c791747-f60a-40a7-94fd-e4b9bb5ea2b0/