cleantalk
Vulnerabilities and Security Researches

Export All Posts, Products, Orders, Refunds & Users, CVE-2025-24611

CVE, Research URL

CVE-2025-24611

Home page URL

Security reports for Export All Posts, Products, Orders, Refunds & Users

Application

Export All Posts, Products, Orders, Refunds & Users

Published on
Jan 24, 2025
Research Description
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Smackcoders WP Ultimate Exporter allows Absolute Path Traversal. This issue affects WP Ultimate Exporter: from n/a through 2.9.
Affected versions
Min -, max 2.9.1.
Status
vulnerable
Previous vulnerability researches
Export All Posts, Products, Orders, Refunds & Users (CVE-2023-45066) , Jun 07, 2024
Export All Posts, Products, Orders, Refunds & Users (CVE-2016-11000) , Jun 07, 2024
Export All Posts, Products, Orders, Refunds & Users (CVE-2018-20968) , Jun 07, 2024
Export All Posts, Products, Orders, Refunds & Users (CVE-2023-2487) , Jun 07, 2024
Export All Posts, Products, Orders, Refunds & Users (CVE-2024-12315) , Feb 16, 2025
New vulnerability
User Registration – Custom Registration Form, Login Form, and User Profile WordPress Plugin (CVE-2025-2594) , Apr 03, 2025
xili-dictionary (CVE-2025-30840) , Apr 03, 2025
Page Takeover (CVE-2025-31470) , Apr 03, 2025
Administrator Z (CVE-2025-2815) , Apr 03, 2025
Custom Fields Account Registration For Woocommerce (CVE-2025-30888) , Apr 03, 2025