Eazydocs Security Vulnerabilities and Issues — Eazydocs CVE List

Lucene search

Spider-themesEazydocs

4 matches found

CVE•added 2025/01/02 12:15 p.m.•62 views

CVE-2023-47648

Missing Authorization vulnerability in spider-themes EazyDocs allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects EazyDocs: from n/a through 2.3.5.

7.5CVSS7.6AI score0.00144EPSS

CVE•added 2024/11/01 3:15 p.m.•40 views

CVE-2024-38721

Missing Authorization vulnerability in spider-themes EazyDocs allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects EazyDocs: from n/a through 2.5.0.

7.1CVSS6.9AI score0.00226EPSS

CVE•added 2024/12/16 4:15 p.m.•39 views

CVE-2024-54376

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Spider-themes EazyDocs.This issue affects EazyDocs: from n/a through 2.5.5.

7.5CVSS7.8AI score0.00592EPSS

CVE•added 2024/01/15 4:15 p.m.•37 views

CVE-2023-6029

The EazyDocs WordPress plugin before 2.3.6 does not have authorization and CSRF checks when handling documents and does not ensure that they are documents from the plugin, allowing unauthenticated users to delete arbitrary posts, as well as add and delete documents/sections.

7.5CVSS7.5AI score0.00161EPSS

Web