Vulnerabilities > Yithemes > Yith Woocommerce Gift Cards > Critical

DATE CVE VULNERABILITY TITLE RISK
2022-12-06 CVE-2022-45359 Unrestricted Upload of File with Dangerous Type vulnerability in Yithemes Yith Woocommerce Gift Cards
Unauth.
network
low complexity
yithemes CWE-434
critical
9.8
2021-02-22 CVE-2021-3120 Unrestricted Upload of File with Dangerous Type vulnerability in Yithemes Yith Woocommerce Gift Cards
An arbitrary file upload vulnerability in the YITH WooCommerce Gift Cards Premium plugin before 3.3.1 for WordPress allows remote attackers to achieve remote code execution on the operating system in the security context of the web server.
network
low complexity
yithemes CWE-434
critical
9.8