CVE-2024-49649
- EPSS 4.58%
- Veröffentlicht 07.01.2025 11:15:07
- Zuletzt bearbeitet 01.04.2026 16:18:51
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in hakeemnala Build App Online build-app-online allows PHP Local File Inclusion.This issue affects Build App Online: from n/a throug...
CVE-2024-53751
- EPSS 0.28%
- Veröffentlicht 02.12.2024 14:15:16
- Zuletzt bearbeitet 01.04.2026 16:20:33
Cross-Site Request Forgery (CSRF) vulnerability in hakeemnala Build App Online build-app-online allows Cross Site Request Forgery.This issue affects Build App Online: from n/a through <= 1.0.23.
CVE-2023-7264
- EPSS 1.84%
- Veröffentlicht 11.06.2024 04:15:11
- Zuletzt bearbeitet 08.04.2026 19:19:07
The Build App Online plugin for WordPress is vulnerable to account takeover due to a weak password reset mechanism in all versions up to, and including, 1.0.22. This makes it possible for unauthenticated attackers to reset the password of arbitrary u...
CVE-2023-51479
- EPSS 0.32%
- Veröffentlicht 17.05.2024 09:15:18
- Zuletzt bearbeitet 05.02.2025 16:05:43
Improper Privilege Management vulnerability in Abdul Hakeem Build App Online allows Privilege Escalation.This issue affects Build App Online: from n/a through 1.0.19.
CVE-2023-51478
- EPSS 0.11%
- Veröffentlicht 25.04.2024 08:15:07
- Zuletzt bearbeitet 05.02.2025 16:03:37
Improper Authentication vulnerability in Abdul Hakeem Build App Online allows Privilege Escalation.This issue affects Build App Online: from n/a through 1.0.19.