8theme: >> Xstore Core Security Vulnerabilities
Missing Authorization vulnerability in 8theme XStore Core.This issue affects XStore Core: from n/a through 5.3.8.
CVSS Score
8.1
EPSS Score
0.003
Published
2024-06-09
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in 8theme XStore Core allows PHP Local File Inclusion.This issue affects XStore Core: from n/a through 5.3.8.
CVSS Score
8.5
EPSS Score
0.004
Published
2024-06-04
Improper Privilege Management vulnerability in 8theme XStore Core allows Privilege Escalation.This issue affects XStore Core: from n/a through 5.3.8.
CVSS Score
9.8
EPSS Score
0.002
Published
2024-05-17
Unrestricted Upload of File with Dangerous Type vulnerability in 8theme XStore Core.This issue affects XStore Core: from n/a through 5.3.8.
CVSS Score
8.2
EPSS Score
0.005
Published
2024-05-17
Missing Authorization vulnerability in 8theme XStore Core.This issue affects XStore Core: from n/a through 5.3.5.
CVSS Score
6.5
EPSS Score
0.002
Published
2024-04-29
Deserialization of Untrusted Data vulnerability in 8theme XStore Core.This issue affects XStore Core: from n/a through 5.3.5.
CVSS Score
9.0
EPSS Score
0.003
Published
2024-04-29
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in 8theme XStore Core allows Reflected XSS.This issue affects XStore Core: from n/a through 5.3.5.
CVSS Score
7.1
EPSS Score
0.001
Published
2024-04-29
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in 8theme XStore Core allows SQL Injection.This issue affects XStore Core: from n/a through 5.3.5.
CVSS Score
9.3
EPSS Score
0.006
Published
2024-04-29