CVE-2024-39651

Name of the Vulnerable Software and Affected Versions WooCommerce PDF Vouchers versions prior to 4.9.5

Description The issue is related to an Improper Limitation of a Pathname to a Restricted Directory, also known as a 'Path Traversal' vulnerability, which allows File Manipulation. This vulnerability affects the WooCommerce PDF Vouchers plugin.

Recommendations Update to version 4.9.5 to secure against this threat. As a temporary workaround, consider restricting access to sensitive files and directories to minimize the risk of exploitation.