CVE-2024-25918
- EPSS 0.72%
- Veröffentlicht 03.04.2024 12:15:10
- Zuletzt bearbeitet 09.02.2025 20:40:39
Unrestricted Upload of File with Dangerous Type vulnerability in InstaWP Team InstaWP Connect allows Code Injection.This issue affects InstaWP Connect: from n/a through 0.1.0.8.
CVE-2024-23507
- EPSS 0.19%
- Veröffentlicht 31.01.2024 12:16:06
- Zuletzt bearbeitet 21.11.2024 08:57:51
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in InstaWP Team InstaWP Connect – 1-click WP Staging & Migration.This issue affects InstaWP Connect – 1-click WP Staging & Migration: from n/a through ...
CVE-2024-23506
- EPSS 0.28%
- Veröffentlicht 27.01.2024 00:15:24
- Zuletzt bearbeitet 21.11.2024 08:57:51
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in InstaWP Team InstaWP Connect – 1-click WP Staging & Migration.This issue affects InstaWP Connect – 1-click WP Staging & Migration: from n/a through 0.1.0.9.
CVE-2023-3956
- EPSS 0.47%
- Veröffentlicht 27.07.2023 07:15:09
- Zuletzt bearbeitet 21.11.2024 08:18:23
The InstaWP Connect plugin for WordPress is vulnerable to unauthorized access of data, modification of data and loss of data due to a missing capability check on the 'events_receiver' function in versions up to, and including, 0.0.9.18. This makes it...