Vulnerabilities > WOW Company > Easy Digital Downloads

DATE CVE VULNERABILITY TITLE RISK
2024-06-04 CVE-2024-35629 Inclusion of Functionality from Untrusted Control Sphere vulnerability in Wow-Company Easy Digital Downloads 1.0.2
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Wow-Company Easy Digital Downloads – Recent Purchases allows PHP Remote File Inclusion.This issue affects Easy Digital Downloads – Recent Purchases: from n/a through 1.0.2.
network
low complexity
wow-company CWE-829
critical
9.8