CVE-2024-9146

UNKNOWN 0.0

WordPress CSS JS Files plugin <= 1.5.0 - Directory Traversal to File Read vulnerability

CVSS Score

0.0

EPSS Score

0.0%

EPSS Percentile

0th

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in jamesdlow CSS JS Files css-js-files allows Path Traversal.This issue affects CSS JS Files: from n/a through <= 1.5.0.

CWE	CWE-22
Vendor	jamesdlow
Product	css js files
Published	Oct 5, 2024
Last Updated	Apr 1, 2026

Stay Ahead of the Next One

Get instant alerts for jamesdlow css js files

Be the first to know when new unknown vulnerabilities affecting jamesdlow css js files are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

jamesdlow / CSS JS Files

0 ≤ 1.5.0

References

NVD ↗ CVE.org ↗ EPSS Data ↗

patchstack.com: https://patchstack.com/database/Wordpress/Plugin/css-js-files/vulnerability/wordpress-css-js-files-plugin-1-5-0-directory-traversal-to-file-read-vulnerability?_s_id=cve

Credits

jsjp | Patchstack Bug Bounty Program