Vulnerabilities > Awsm

DATE	CVE	VULNERABILITY TITLE	RISK
2023-10-16	CVE-2023-4933	Files or Directories Accessible to External Parties vulnerability in Awsm WP JOB Openings The WP Job Openings WordPress plugin before 3.4.3 does not block listing the contents of the directories where it stores attachments to job applications, allowing unauthenticated visitors to list and download private attachments if the autoindex feature of the web server is enabled. network low complexity awsm CWE-552	5.3
2023-03-23	CVE-2023-23707	Unrestricted Upload of File with Dangerous Type vulnerability in Awsm Embed ANY Document Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting'), Unrestricted Upload of File with Dangerous Type vulnerability in Awsm Innovations Embed Any Document – Embed PDF, Word, PowerPoint and Excel Files allows Stored XSS via upload of SVG and HTML files. This issue affects Embed Any Document – Embed PDF, Word, PowerPoint and Excel Files plugin <= 2.7.1 versions. network low complexity awsm CWE-434	5.4

Vulnerabilities > Awsm {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Awsm"}]}