CVE-2024-47323: 
WordPress vulnerability analysis and mitigation

The WP Timeline – Vertical and Horizontal timeline plugin for WordPress contains a Local File Inclusion vulnerability (CVE-2024-47323) affecting all versions up to and including 3.6.7. The vulnerability was discovered and reported by Bonds on September 25, 2024 (Patchstack, WPScan).

The vulnerability is classified as an Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) issue that allows PHP Local File Inclusion. It has received a CVSS v3.1 base score of 8.1 (High) with the vector string CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H. The vulnerability is tracked under CWE-22 (Patchstack).

This vulnerability makes it possible for unauthenticated attackers to include and execute arbitrary files on the server, allowing the execution of any PHP code in those files. This can be used to bypass access controls, obtain sensitive information, or achieve code execution in cases where images and other "safe" file types can be uploaded and included (WPScan).

The vulnerability has been fixed in version 3.6.8 of the WP Timeline plugin. Users are advised to update to version 3.6.8 or later immediately. Patchstack has issued a virtual patch to mitigate this issue by blocking any attacks until users update to a fixed version (Patchstack).