Lucene search
Ebook Store Security Vulnerabilities
cve
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Shopfiles Ltd Ebook Store plugin <= 5.775 versions.
5.9CVSS
4.9AI Score
0.0005EPSS
2023-05-15 11:15 AM
22
cve
Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in Shopfiles Ltd Ebook Store plugin <= 5.785 versions.
7.1CVSS
6AI Score
0.001EPSS
2023-10-18 02:15 PM
20
cve
The Ebook Store plugin for WordPress is vulnerable to Full Path Disclosure in all versions up to, and including, 5.8001. This is due to the plugin utilizing fpdi-protection and not preventing direct access to test files that have display_errors set to true. This makes it possible for unauthenticate...
5.3CVSS
5.1AI Score
0.0005EPSS
2024-08-02 02:15 AM
5