Aliexpress Dropshipping With Alinext@* Security Vulnerabilities and Issues — Aliexpress Dropshipping With Alinext@* CVE List

Lucene search

Ali2wooAliexpress Dropshipping With Alinext*

4 matches found

CVE•added 2024/06/19 4:15 a.m.•51 views

CVE-2024-2381

The AliExpress Dropshipping with AliNext Lite plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the ajax_save_image function in all versions up to, and including, 3.3.5. This makes it possible for authenticated attackers, with subscriber-level acces...

8.8CVSS8.9AI score0.03443EPSS

CVE•added 2025/03/27 11:15 a.m.•43 views

CVE-2025-30859

URL Redirection to Untrusted Site ('Open Redirect') vulnerability in ali2woo AliNext allows Phishing. This issue affects AliNext: from n/a through 3.5.1.

4.7CVSS6.9AI score0.00038EPSS

CVE•added 2024/06/19 4:15 a.m.•42 views

CVE-2024-4450

The AliExpress Dropshipping with AliNext Lite plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on several functions in the ImportAjaxController.php file in all versions up to, and including, 3.3.5. This makes it possible for authenticated attackers, with s...

6.3CVSS6.1AI score0.00126EPSS

CVE•added 2024/07/22 10:15 a.m.•36 views

CVE-2024-37211

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Ali2Woo Team Ali2Woo Lite allows Reflected XSS.This issue affects Ali2Woo Lite: from n/a through 3.3.5.

7.1CVSS7AI score0.00077EPSS