Dateoljo

#8512of 53,622
32.3Total CVSS
Vulnerabilities · 4
High
3
Critical
1
PT-2024-13528
9.1
2024-03-26
WordPress · Wp Child Theme Generator · CVE-2023-47873
**Name of the Vulnerable Software and Affected Versions** WP Child Theme Generator versions 1.0.9 and earlier **Description** The issue is related to an Unrestricted Upload of File with Dangerous Type, which affects the WP Child Theme Generator. This allows for the upload of files with potentially dangerous types, posing a security risk. **Recommendations** For WP Child Theme Generator versions 1.0.9 and earlier, update to a version that includes a fix for this issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.
PT-2024-14880
7.2
2024-03-26
Unknown · Theme Editor · CVE-2023-6091
**Name of the Vulnerable Software and Affected Versions** Theme Editor versions n/a through 2.7.1 **Description** The issue is related to an Unrestricted Upload of File with Dangerous Type. This allows for the upload of files with potentially dangerous types, which could lead to security issues. **Recommendations** For versions n/a through 2.7.1, update to a version that fixes this issue, as the current version allows unrestricted file uploads. At the moment, there is no information about a newer version that contains a fix for this vulnerability.
PT-2024-19221
8.0
2024-01-24
WordPress · Webtoffee Order Export & Order Import For Woocommerce · CVE-2024-22135
**Name of the Vulnerable Software and Affected Versions** WebToffee Order Export & Order Import for WooCommerce versions n/a through 2.4.3 **Description** The issue is related to an Unrestricted Upload of File with Dangerous Type, which affects the WebToffee Order Export & Order Import for WooCommerce plugin. **Recommendations** For versions n/a through 2.4.3, update to a version later than 2.4.3 to resolve the issue. At the moment, there is no information about additional mitigation measures.
PT-2024-19239
8.0
2024-01-24
Webtoffee · Product Import Export For Woocommerce · CVE-2024-22152
**Name of the Vulnerable Software and Affected Versions** Product Import Export for WooCommerce versions 2.3.7 and earlier **Description** The issue is related to an Unrestricted Upload of File with Dangerous Type, which affects the WebToffee Product Import Export for WooCommerce. **Recommendations** For versions 2.3.7 and earlier, update to a version later than 2.3.7 to resolve the issue. As a temporary workaround, consider restricting file uploads to only allow safe file types until a patch is available.