2 matches found
CVE-2021-34619
The CVE-2021-34619 issue affects the WordPress WooCommerce Stock Manager plugin up to version 2.5.7, where the import-export.php path lacks nonce handling and file validation, enabling Cross-Site Request Forgery that can lead to Arbitrary File Upload. Impact is high (potential code upload and exe...
CVE-2023-35091
The CVE-2023-35091 entry describes a Cross-Site Request Forgery (CSRF) vulnerability in the WordPress WooCommerce Stock Manager (StoreApps) plugin, affecting versions