CVE-2024-13538

The BigBuy Dropshipping Connector for WooCommerce plugin for WordPress is vulnerable to Full Path Disclosure in all versions up to, and including, 1.9.19. This is due the /vendor/cocur/slugify/bin/generate-default.php file being directly accessible and triggering an error. This makes it possible...

PT-2024-37727 · WordPress · Optimize Images Alt Text (Alt Tag) & Names For Seo Using Ai

Name of the Vulnerable Software and Affected Versions: Optimize Images ALT Text alt tag & names for SEO using AI plugin for WordPress versions up to, and including, 3.1.1 Description: The plugin is vulnerable to Full Path Disclosure due to its utilization of cocur and failure to prevent direct...