CVE-2024-12811
Published: 28 February 2025
Description
The Traveler theme for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 3.1.9 via shortcodes. This makes it possible for authenticated attackers, with contributor-level and above permissions, to include and execute arbitrary files on the server, allowing the execution of any PHP code in those files. This can be used to bypass access controls, obtain sensitive data, or achieve code execution in cases where php file type can be uploaded and included.
Security Summary
CVE-2024-12811 is a Local File Inclusion vulnerability (CWE-98) affecting the Traveler theme for WordPress in all versions up to and including 3.1.9. The flaw exists via shortcodes, enabling the inclusion and execution of arbitrary files on the server. It has a CVSS v3.1 base score of 8.8 (AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H) and was published on 2025-02-28.
Authenticated attackers with contributor-level permissions or higher can exploit this vulnerability over the network with low complexity and no user interaction required. Successful exploitation allows execution of PHP code in included files, which can bypass access controls, obtain sensitive data, or achieve remote code execution if PHP files are uploadable and includable.
Mitigation details are provided in the vendor's changelog at https://travelerwp.com/traveler-changelog/ and the Wordfence threat intelligence advisory at https://www.wordfence.com/threat-intel/vulnerabilities/id/a09298b3-3b5c-4a92-9332-79ff83234479?source=cve.
Details
- CWE(s)