Vulnerabilities > 8Theme > Xstore Core > 4.0.3
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-06-09 | CVE-2024-33555 | Unspecified vulnerability in 8Theme Xstore Core Missing Authorization vulnerability in 8theme XStore Core.This issue affects XStore Core: from n/a through 5.3.8. | 8.8 |
| 2024-06-04 | CVE-2024-33557 | Unspecified vulnerability in 8Theme Xstore Core Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in 8theme XStore Core allows PHP Local File Inclusion.This issue affects XStore Core: from n/a through 5.3.8. | 8.8 |
| 2024-05-17 | CVE-2024-33556 | Unspecified vulnerability in 8Theme Xstore Core Unrestricted Upload of File with Dangerous Type vulnerability in 8theme XStore Core.This issue affects XStore Core: from n/a through 5.3.8. | 9.8 |
| 2024-04-29 | CVE-2024-33558 | Unspecified vulnerability in 8Theme Xstore Core Missing Authorization vulnerability in 8theme XStore Core.This issue affects XStore Core: from n/a through 5.3.5. | 6.5 |
| 2024-04-29 | CVE-2024-33553 | Unspecified vulnerability in 8Theme Xstore Core Deserialization of Untrusted Data vulnerability in 8theme XStore Core.This issue affects XStore Core: from n/a through 5.3.5. | 9.8 |
| 2024-04-29 | CVE-2024-33551 | Unspecified vulnerability in 8Theme Xstore Core Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in 8theme XStore Core allows SQL Injection.This issue affects XStore Core: from n/a through 5.3.5. | 9.8 |
| 2024-04-29 | CVE-2024-33554 | Unspecified vulnerability in 8Theme Xstore Core Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in 8theme XStore Core allows Reflected XSS.This issue affects XStore Core: from n/a through 5.3.5. | 6.1 |