Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
superstorefinder super store finder vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2023-43835
Super Store Finder 3.7 and below is vulnerable to authenticated Arbitrary PHP Code Injection that could lead to Remote Code Execution when settings overwrite config.inc.php content.
Superstorefinder Super Store Finder
7.2
CVSSv3
CVE-2023-44044
Super Store Finder v3.6 and below exists to contain a SQL injection vulnerability via the Search parameter at /admin/stores.php.
Superstorefinder Super Store Finder
5.3
CVSSv3
CVE-2023-5054
The Super Store Finder plugin for WordPress is vulnerable to unauthenticated arbitrary email creation and relay in versions up to, and including, 6.9.3. This is due to insufficient restrictions on the sendMail.php file that allows direct access. This makes it possible for unauthe...
Superstorefinder Super Store Finder
9.8
CVSSv3
CVE-2023-3751
A vulnerability was found in Super Store Finder 3.6. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /index.php of the component POST Parameter Handler. The manipulation of the argument products leads to sql injection. The ...
Superstorefinder Super Store Finder 3.6
9.8
CVSSv3
CVE-2023-41507
Super Store Finder v3.6 exists to contain multiple SQL injection vulnerabilities in the store locator component via the products, distance, lat, and lng parameters.
Superstorefinder Super Store Finder 3.6
1 Github repository
9.8
CVSSv3
CVE-2023-41508
A hard coded password in Super Store Finder v3.6 allows malicious users to access the administration panel.
Superstorefinder Super Store Finder 3.6
1 Github repository
9.8
CVSSv3
CVE-2023-38912
SQL injection vulnerability in Super Store Finder PHP Script v.3.6 allows a remote malicious user to execute arbitrary code via a crafted payload to the username parameter.
Superstorefinder Php Script 3.6
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
inject
CVE-2024-34001
CVE-2024-37018
LFI
CVE-2024-1275
CVE-2024-1086
CSRF
CVE-2024-31030
CVE-2024-24919
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started