Vulnerabilities > Ocdi > ONE Click Demo Import > 2.6.1
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-05-14 | CVE-2024-34433 | Unspecified vulnerability in Ocdi ONE Click Demo Import Deserialization of Untrusted Data vulnerability in OCDI One Click Demo Import.This issue affects One Click Demo Import: from n/a through 3.2.0. | 7.2 |
| 2022-04-11 | CVE-2022-1008 | Unspecified vulnerability in Ocdi ONE Click Demo Import The One Click Demo Import WordPress plugin before 3.1.0 does not validate the imported file, allowing high privilege users such as admin to upload arbitrary files (such as PHP) even when FILE_MODS and FILE_EDIT are disallowed | 7.2 |