Vulnerabilities > Cridio > Listingpro > 2.6.6

DATE CVE VULNERABILITY TITLE RISK
2025-01-02 CVE-2024-39623 Cross-Site Request Forgery (CSRF) vulnerability in Cridio Listingpro
Cross-Site Request Forgery (CSRF) vulnerability in CridioStudio ListingPro allows Authentication Bypass.This issue affects ListingPro: from n/a through 2.9.4.
network
low complexity
cridio CWE-352
8.8
8.8
2024-08-29 CVE-2024-38795 SQL Injection vulnerability in Cridio Listingpro
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in CridioStudio ListingPro allows SQL Injection.This issue affects ListingPro: from n/a through 2.9.4.
network
low complexity
cridio CWE-89
critical
 9.8
9.8
2024-08-29 CVE-2024-39620 SQL Injection vulnerability in Cridio Listingpro
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in CridioStudio ListingPro allows SQL Injection.This issue affects ListingPro: from n/a through 2.9.4.
network
low complexity
cridio CWE-89
8.8
8.8
2024-08-29 CVE-2024-39622 SQL Injection vulnerability in Cridio Listingpro
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in CridioStudio ListingPro.This issue affects ListingPro: from n/a through 2.9.4.
network
low complexity
cridio CWE-89
critical
 9.8
9.8
2024-08-01 CVE-2024-39619 Unspecified vulnerability in Cridio Listingpro
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in CridioStudio ListingPro allows PHP Local File Inclusion.This issue affects ListingPro: from n/a through 2.9.3.
network
low complexity
cridio
critical
 9.8
9.8
2024-08-01 CVE-2024-39621 Unspecified vulnerability in Cridio Listingpro
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in CridioStudio ListingPro allows PHP Local File Inclusion.This issue affects ListingPro: from n/a through 2.9.3.
network
low complexity
cridio
7.2
7.2
2024-08-01 CVE-2024-39624 Unspecified vulnerability in Cridio Listingpro
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in CridioStudio ListingPro allows PHP Local File Inclusion.This issue affects ListingPro: from n/a through 2.9.3.
network
low complexity
cridio
8.8
8.8