Vulnerabilities > Inspireui > Mstore API > High
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2024-09-13 | CVE-2024-8242 | Unrestricted Upload of File with Dangerous Type vulnerability in Inspireui Mstore API The MStore API – Create Native Android & iOS Apps On The Cloud plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the update_user_profile() function in all versions up to, and including, 4.15.3. | 8.8 |
2023-12-29 | CVE-2023-50878 | Cross-Site Request Forgery (CSRF) vulnerability in Inspireui Mstore API Cross-Site Request Forgery (CSRF) vulnerability in InspireUI MStore API.This issue affects MStore API: from n/a through 4.10.1. | 8.8 |
2023-06-23 | CVE-2022-47614 | SQL Injection vulnerability in Inspireui Mstore API Unauth. | 7.5 |