Vulnerabilities > Magazine3 > PWA FOR WP AMP > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-11-01 | CVE-2024-47318 | Missing Authorization vulnerability in Magazine3 PWA for WP & AMP Missing Authorization vulnerability in Magazine3 PWA for WP & AMP allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects PWA for WP & AMP: from n/a through 1.7.72. | 8.8 |
| 2023-06-07 | CVE-2021-4354 | Unrestricted Upload of File with Dangerous Type vulnerability in Magazine3 PWA for WP & AMP The PWA for WP & AMP for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the pwaforwp_splashscreen_uploader function in versions up to, and including, 1.7.32. | 8.8 |