Vulnerabilities > Buynowdepot > Critical

DATE CVE VULNERABILITY TITLE RISK
2024-10-28 CVE-2024-50497 Inclusion of Functionality from Untrusted Control Sphere vulnerability in Buynowdepot Advanced Online Ordering and Delivery Platform
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in BuyNowDepot Advanced Online Ordering and Delivery Platform allows PHP Local File Inclusion.This issue affects Advanced Online Ordering and Delivery Platform: from n/a through 2.0.0.
network
low complexity
buynowdepot CWE-829
critical
9.8