Filtered by vendor Pickplugins
Subscriptions
Filtered by product Product Designer
Subscriptions
Total
3 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2024-3608 | 1 Pickplugins | 1 Product Designer | 2024-11-21 | 5.3 Medium |
| The Product Designer plugin for WordPress is vulnerable to unauthorized loss of data due to a missing capability check on the product_designer_ajax_delete_attach_id() function in all versions up to, and including, 1.0.33. This makes it possible for unauthenticated attackers to delete arbitrary attachments. | ||||
| CVE-2024-31277 | 1 Pickplugins | 1 Product Designer | 2024-11-21 | 8.7 High |
| Deserialization of Untrusted Data vulnerability in PickPlugins Product Designer.This issue affects Product Designer: from n/a through 1.0.32. | ||||
| CVE-2024-38726 | 1 Pickplugins | 1 Product Designer | 2024-11-01 | 7.5 High |
| Missing Authorization vulnerability in PickPlugins Product Designer allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Product Designer: from n/a through 1.0.33. | ||||
Page 1 of 1.