2 matches found
PT-2024-29982 · Unknown · Filament Excel
Name of the Vulnerable Software and Affected Versions: Filament Excel versions prior to v2.3.3 Description: The export download route "/filament-excel/path" allowed downloading any file without login when the webserver allows ../ in the URL. This issue was reported by Kevin Pohl. Recommendations:...
PT-2019-7283 · WordPress · Easy Digital Downloads
Name of the Vulnerable Software and Affected Versions: easy-digital-downloads plugin versions prior to 2.3.3 Description: The issue is related to SQL injection in the easy-digital-downloads plugin for WordPress. Recommendations: For versions prior to 2.3.3, update to version 2.3.3 or later to...