57 matches found
CVE-2024-38795
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in CridioStudio ListingPro allows SQL Injection.This issue affects ListingPro: from n/a through 2.9.4...
CVE-2024-39620
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in CridioStudio ListingPro allows SQL Injection.This issue affects ListingPro: from n/a through 2.9.4...
CVE-2024-39622
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in CridioStudio ListingPro.This issue affects ListingPro: from n/a through 2.9.4...
CVE-2024-39620
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in CridioStudio ListingPro listingpro-plugin allows SQL Injection.This issue affects ListingPro: from n/a through = 2.9.4...
CVE-2024-39622
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in CridioStudio ListingPro listingpro allows SQL Injection.This issue affects ListingPro: from n/a through = 2.9.4...
CVE-2024-38795
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in CridioStudio ListingPro listingpro-plugin allows SQL Injection.This issue affects ListingPro: from n/a through = 2.9.4...
CVE-2024-39622
CVE-2024-39622 is an unauthenticated SQL injection in the WordPress ListingPro theme (and ListingPro Plugin entries) affecting versions up to 2.9.4; root cause is improper neutralization of SQL elements. Patch status across sources shows a fix in 2.9.5 (ListingPro theme) and related updates; unpa...
CVE-2024-39620
CVE-2024-39620 is the WordPress ListingPro plugin SQL Injection vulnerability (ListingPro
CVE-2024-39620 WordPress ListingPro plugin <= 2.9.4 - SQL Injection vulnerability
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in CridioStudio ListingPro allows SQL Injection.This issue affects ListingPro: from n/a through 2.9.4...
CVE-2024-38795
CVE-2024-38795 affects ListingPro Plugin for WordPress (versions
CVE-2024-39624
Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in CridioStudio ListingPro listingpro allows PHP Local File Inclusion.This issue affects ListingPro: from n/a through = 2.9.4...
CVE-2024-39619
Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in CridioStudio ListingPro listingpro-plugin allows PHP Local File Inclusion.This issue affects ListingPro: from n/a through = 2.9.4...
CVE-2024-39619
CVE-2024-39619 is a Path Traversal vulnerability in ListingPro (WordPress plugin/theme project) that allows PHP Local File Inclusion. Affected: ListingPro listing plugin versions up to 2.9.3 (and related listings in patch sources). Root cause per sources: improper limitation of a pathname to a re...
CVE-2024-39619 WordPress ListingPro plugin <= 2.9.4 - Unauthenticated Local File Inclusion vulnerability
Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in CridioStudio ListingPro listingpro-plugin allows PHP Local File Inclusion.This issue affects ListingPro: from n/a through = 2.9.4...
CVE-2024-39621
CVE-2024-39621 describes a path traversal vulnerability in ListingPro (WordPress plugin) that allows PHP local file inclusion in versions up to 2.9.3. Multiple connected sources confirm the issue originates from improper pathname limitation, enabling access to restricted directories and potential...
CVE-2024-39624
CVE-2024-39624: WordPress ListingPro Listing Theme
PT-2024-28558 · Cridiostudio · Listingpro
Name of the Vulnerable Software and Affected Versions: ListingPro versions n/a through 2.9.3 Description: The issue is related to an Improper Limitation of a Pathname to a Restricted Directory, also known as a 'Path Traversal' vulnerability, in CridioStudio ListingPro. This allows for PHP Local...