2 matches found
PT-2024-24803 · Olive Themes · Olive One Click Demo Import
Name of the Vulnerable Software and Affected Versions: Olive One Click Demo Import versions 1.1.1 and earlier Description: The issue is related to a Missing Authorization vulnerability in Olive Themes Olive One Click Demo Import. Recommendations: For Olive One Click Demo Import versions 1.1.1 and...
CVE-2022-1008
The One Click Demo Import WordPress plugin before 3.1.0 does not validate the imported file, allowing high privilege users such as admin to upload arbitrary files such as PHP even when FILEMODS and FILEEDIT are disallowed...