2 matches found
PT-2026-33404
The Kubio plugin for WordPress is vulnerable to Arbitrary File Upload in versions up to and including 2.7.2. This is due to insufficient capability checks in the kubio rest pre insert import assets function, which is hooked to the rest pre insert post type filter for posts, pages, templates, and...
PT-2026-1267
Name of the Vulnerable Software and Affected Versions WP Swings Wallet System for WooCommerce versions through 2.7.2 Description A flaw exists in WP Swings Wallet System for WooCommerce that allows the retrieval of embedded sensitive data due to the insertion of sensitive information into sent...