WordPress Plugin Security Update Advisory (CVE-2024-10571)

Nov 15 2024

Overview

We have released a security update to address a vulnerability in the WordPress Chart Plugin. users of affected products are advised to update to the latest version.

Affected Products

CVE-2024-10571

Chartify Version: ~ 2.9.5 (inclusive)

Resolved Vulnerabilities

Vulnerability that allows unauthenticated attackers to execute arbitrary PHP code, including local files, via the source parameter (CVE-2024-10571)

Vulnerability Patches

vulnerability Patches have been made available in the latest update. Please follow the instructions on the Referenced Sites to update to the latest Vulnerability Patches version.

CVE-2024-10571

Chartify version: 2.9.6

references

[1] CVE-2024-10571 Detail

https://nvd.nist.gov/vuln/detail/CVE-2024-10571

[2] Chartify – WordPress Chart Plugin <= 2.9.5 – Unauthenticated Local File Inclusion via source

https://www.wordfence.com/threat-intel/vulnerabilities/wordpress-plugins/chart-builder/chartify-wordpress-chart-plugin-295-unauthenticated-local-file-inclusion-via-source

WordPress Plugin Security Update Advisory (CVE-2024-10571)

Ivanti Product Security Update Advisory

Microsoft Product Suite November 2024 Security Update Advisory

Tags:

Ivanti Product Security Update Advisory

Microsoft Product Suite November 2024 Security Update Advisory