5 matches found
CVE-2024-37520
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in RadiusTheme ShopBuilder – Elementor WooCommerce Builder Addons shopbuilder.This issue affects ShopBuilder – Elementor WooCommerce Builder Addons: from n/a through = 2.1.12...
CVE-2024-37520
CVE-2024-37520 describes a path traversal (local file inclusion) vulnerability in the ShopBuilder – Elementor WooCommerce Builder Addons WordPress plugin. The flaw affects ShopBuilder versions n/a through 2.1.12 and is listed as an authenticated (Contributor+) issue with LFI via improper pathname...
CVE-2024-34812
Insertion of Sensitive Information Into Sent Data vulnerability in RadiusTheme ShopBuilder – Elementor WooCommerce Builder Addons shopbuilder.This issue affects ShopBuilder – Elementor WooCommerce Builder Addons: from n/a through = 2.1.8...
CVE-2024-34812 WordPress ShopBuilder plugin <= 2.1.8 - Sensitive Data Exposure vulnerability
Insertion of Sensitive Information Into Sent Data vulnerability in RadiusTheme ShopBuilder – Elementor WooCommerce Builder Addons shopbuilder.This issue affects ShopBuilder – Elementor WooCommerce Builder Addons: from n/a through = 2.1.8...
WordPress ShopBuilder – Elementor WooCommerce Builder Addons Plugin <= 2.1.8 is vulnerable to Sensitive Data Exposure
Software ShopBuilder – Elementor WooCommerce Builder Addons Type Plugin Vulnerable versions = 2.1.8 Fixed in 2.1.9 OWASP Top 10 A1: Broken Access Control Classification Sensitive Data Exposure CVE CVE-2024-34812 Patch priority Low CVSS severity Low 5.3 Developer Mamunur Rashid PSID 3f187cb1d98a...