CVE-2024-13671
Music Sheet Viewer <= 4.1 - Unauthenticated Arbitrary File Read
The Music Sheet Viewer plugin for WordPress is vulnerable to Arbitrary File Read in all versions up to, and including, 4.1 via the read_score_file() function. This makes it possible for unauthenticated attackers to read the contents of arbitrary files on the server, which can contain sensitive information. CVE-2025-25155 is likely a duplicate of this issue.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Produtos afetados
efreja · Music Sheet ViewerQuer saber se a sua infraestrutura está exposta a isto?
Falar com a TrueHacking →