Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cedcommerce wholesale market vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2022-4298
The Wholesale Market WordPress plugin prior to 2.2.1 does not have authorisation check, as well as does not validate user input used to generate system path, allowing unauthenticated malicious users to download arbitrary file from the server.
Cedcommerce Wholesale Market
NA
CVE-2022-4106
The Wholesale Market for WooCommerce WordPress plugin prior to 1.0.7 does not have authorisation check, as well as does not validate user input used to generate system path, allowing unauthenticated malicious users to download arbitrary file from the server.
Cedcommerce Wholesale Market For Woocommerce
NA
CVE-2022-4108
The Wholesale Market for WooCommerce WordPress plugin prior to 1.0.8 does not validate user input used to generate system path, allowing high privilege users such as admin to download arbitrary file from the server even when they should not be able to (for example in multisite)
Cedcommerce Wholesale Market For Woocommerce
NA
CVE-2022-4109
The Wholesale Market for WooCommerce WordPress plugin prior to 2.0.0 does not validate user input against path traversal attacks, allowing high privilege users such as admin to download arbitrary logs from the server even when they should not be able to (for example in multisite)
Cedcommerce Wholesale Market For Woocommerce
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
buffer overflow
type confusion
server-side request forgery
CVE-2024-38440
CVE-2024-27801
CVE-2024-5868
CVE-2024-0582
CVE-2024-37643
CVE-2024-3105
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started