Vulnerabilities > Ivanm

DATE	CVE	VULNERABILITY TITLE	RISK
2025-01-30	CVE-2024-13707	Cross-Site Request Forgery (CSRF) vulnerability in Ivanm WP Image Uploader The WP Image Uploader plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.0.1. network low complexity ivanm CWE-352	8.1
2025-01-30	CVE-2024-13720	Path Traversal vulnerability in Ivanm WP Image Uploader The WP Image Uploader plugin for WordPress is vulnerable to arbitrary file deletion due to insufficient file path validation in the gky_image_uploader_main_function() function in all versions up to, and including, 1.0.1. network low complexity ivanm CWE-22 critical	9.1

Vulnerabilities > Ivanm {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Ivanm"}]}