CVE-2024-11150 | vanquish User Extra Fields Plugin up to 16.6 on WordPress wp-config.php delete_tmp_uploaded_file path traversal
A vulnerability was found in vanquish User Extra Fields Plugin up to 16.6 on WordPress and classified as critical. Affected by this issue is the function delete_tmp_uploaded_file of the file wp-config.php. The manipulation leads to path traversal.
This vulnerability is handled as CVE-2024-11150. The attack may be launched remotely. There is no exploit available.