CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-4450

The AliExpress Dropshipping with AliNext Lite plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on several functions in the ImportAjaxController.php file in all versions up to, and including, 3.3.5. This makes it possible for authenticated attackers, with subscriber-level access and above, to perform several actions like importing and modifying products.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 30.6%

CVSS Severity

CVSS v3 Score 6.3

References

Products affected by CVE-2024-4450

Ali2woo » Aliexpress Dropshipping With Alinext » Version: N/A

cpe:2.3:a:ali2woo:aliexpress_dropshipping_with_alinext:-
Ali2woo » Aliexpress Dropshipping With Alinext » Version: 3.0.25

cpe:2.3:a:ali2woo:aliexpress_dropshipping_with_alinext:3.0.25
Ali2woo » Aliexpress Dropshipping With Alinext » Version: 3.1.0

cpe:2.3:a:ali2woo:aliexpress_dropshipping_with_alinext:3.1.0
Ali2woo » Aliexpress Dropshipping With Alinext » Version: 3.1.2

cpe:2.3:a:ali2woo:aliexpress_dropshipping_with_alinext:3.1.2
Ali2woo » Aliexpress Dropshipping With Alinext » Version: 3.1.3

cpe:2.3:a:ali2woo:aliexpress_dropshipping_with_alinext:3.1.3
Ali2woo » Aliexpress Dropshipping With Alinext » Version: 3.1.4

cpe:2.3:a:ali2woo:aliexpress_dropshipping_with_alinext:3.1.4
Ali2woo » Aliexpress Dropshipping With Alinext » Version: 3.2.0

cpe:2.3:a:ali2woo:aliexpress_dropshipping_with_alinext:3.2.0
Ali2woo » Aliexpress Dropshipping With Alinext » Version: 3.2.1

cpe:2.3:a:ali2woo:aliexpress_dropshipping_with_alinext:3.2.1
Ali2woo » Aliexpress Dropshipping With Alinext » Version: 3.2.4

cpe:2.3:a:ali2woo:aliexpress_dropshipping_with_alinext:3.2.4
Ali2woo » Aliexpress Dropshipping With Alinext » Version: 3.2.6

cpe:2.3:a:ali2woo:aliexpress_dropshipping_with_alinext:3.2.6
Ali2woo » Aliexpress Dropshipping With Alinext » Version: 3.2.7

cpe:2.3:a:ali2woo:aliexpress_dropshipping_with_alinext:3.2.7
Ali2woo » Aliexpress Dropshipping With Alinext » Version: 3.2.8

cpe:2.3:a:ali2woo:aliexpress_dropshipping_with_alinext:3.2.8
Ali2woo » Aliexpress Dropshipping With Alinext » Version: 3.3.0

cpe:2.3:a:ali2woo:aliexpress_dropshipping_with_alinext:3.3.0
Ali2woo » Aliexpress Dropshipping With Alinext » Version: 3.3.2

cpe:2.3:a:ali2woo:aliexpress_dropshipping_with_alinext:3.3.2
Ali2woo » Aliexpress Dropshipping With Alinext » Version: 3.3.3

cpe:2.3:a:ali2woo:aliexpress_dropshipping_with_alinext:3.3.3
Ali2woo » Aliexpress Dropshipping With Alinext » Version: 3.3.5

cpe:2.3:a:ali2woo:aliexpress_dropshipping_with_alinext:3.3.5
Ali2woo » Aliexpress Dropshipping With Alinext » Version: 3.3.6

cpe:2.3:a:ali2woo:aliexpress_dropshipping_with_alinext:3.3.6

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-4450

Products

Pricing

Contact Us