CVE-2024-54380

Name of the Vulnerable Software and Affected Versions: Filippo Bodei WP Cookies Enabler versions 1.0.1 and earlier

Description: The issue is related to an improper limitation of a pathname to a restricted directory, also known as 'Path Traversal', which allows for PHP Local File Inclusion. This means that an attacker could potentially access and include local files on the server, which could lead to sensitive information disclosure or other security issues.

Recommendations: For Filippo Bodei WP Cookies Enabler versions 1.0.1 and earlier, consider disabling the plugin until a patch is available to prevent potential exploitation of the Path Traversal vulnerability. At the moment, there is no information about a newer version that contains a fix for this vulnerability.