What the vulnerability does
01Description
Path Traversal: '.../...//' vulnerability in Trusty Plugins Shop Products Filter trusty-woo-products-filter allows PHP Local File Inclusion.This issue affects Shop Products Filter: from n/a through <= 1.2.
CVSS base score
CVSS vector
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
What the vulnerability does
Path Traversal: '.../...//' vulnerability in Trusty Plugins Shop Products Filter trusty-woo-products-filter allows PHP Local File Inclusion.This issue affects Shop Products Filter: from n/a through <= 1.2.
Explanation of Vulnerability in Simple Terms
Shop Products Filter versions 1.2 and earlier contain a vulnerability allowing authenticated users with low privileges to read sensitive data, modify site content, or disrupt service. The flaw requires network access and high attack complexity. No patch version is currently available; administrators should contact Trusty Plugins for updates or mitigation guidance.
What an attacker can do
Read sensitive data, modify site content, or disrupt service availability.
Potential impact on your site
Authenticated users can access confidential information, alter product filters or site data, or cause downtime.
Conditions required to exploit
Attacker must be authenticated with low-level user privileges and have network access.
Key dates
External resources
Related vulnerabilities