CVE-2024-50525

🗓️ 04 Nov 2024 13:44:28Reported by PatchstackType

cve🔗 web.nvd.nist.gov📰️ 2 Media mentions👁 39 Views

Unrestricted file upload vulnerability in Helloprint WooCommerce plugi

Reporter	Title	Published	Views	Family All 12
Circl	CVE-2024-50525	4 Nov 202416:06	–	circl
CNNVD	WordPress plugin Plug your WooCommerce into the largest catalog of customized print products from Helloprint 代码问题漏洞	4 Nov 202400:00	–	cnnvd
Cvelist	CVE-2024-50525 WordPress Helloprint plugin <= 2.0.4 - Arbitrary File Upload vulnerability	4 Nov 202413:44	–	cvelist
EUVD	EUVD-2024-44938	3 Oct 202520:07	–	euvd
NVD	CVE-2024-50525	4 Nov 202414:15	–	nvd
OSV	CVE-2024-50525	4 Nov 202414:15	–	osv
Patchstack	WordPress Plug your WooCommerce into the largest catalog of customized print products from Helloprint Plugin <= 2.0.2 is vulnerable to Arbitrary File Upload	30 Oct 202400:00	–	patchstack
Patchstack	WordPress Helloprint plugin <= 2.0.4 - Arbitrary File Upload vulnerability	30 Oct 202410:43	–	patchstack
Positive Technologies	PT-2024-34302 · Unknown · Woocommerce +1	4 Nov 202400:00	–	ptsecurity
RedhatCVE	CVE-2024-50525	5 Feb 202506:48	–	redhatcve

NVD

Vulners

Vulnrichment

Node

helloprint helloprintRange≤2.0.2wordpress

[
  {
    "collectionURL": "https://wordpress.org/plugins",
    "defaultStatus": "unaffected",
    "packageName": "helloprint",
    "product": "Helloprint",
    "vendor": "helloprint",
    "versions": [
      {
        "changes": [
          {
            "at": "2.0.5",
            "status": "unaffected"
          }
        ],
        "lessThanOrEqual": "2.0.4",
        "status": "affected",
        "version": "0",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
patchstack	www.patchstack.com/database/Wordpress/Plugin/helloprint/vulnerability/wordpress-helloprint-plugin-2-0-2-arbitrary-file-upload-vulnerability

28 Apr 2026 16:10Current

5.9Medium risk

Vulners AI Score5.9

CVSS 3.19.8 - 10

EPSS0.01232

SSVC

CWE-434