CVE-2024-9765 Information

Description

The EKC Tournament Manager WordPress plugin before 2.2.2 allows a logged in admin to download system files outside of the WordPress directory

Reference

https://wpscan.com/vulnerability/c86157b0-43f3-4e82-9697-7dd9401b48d6/