CVSS: 7.8EPSS: 18%CPEs: 1EXPL: 1CVE-2024-50508 – WordPress Woocommerce Product Design plugin <= 1.0.0 - Arbitrary File Download vulnerability
https://notcve.org/view.php?id=CVE-2024-50508
29 Oct 2024 — Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Chetan Khandla Woocommerce Product Design allows Path Traversal.This issue affects Woocommerce Product Design: from n/a through 1.0.0. La vulnerabilidad de limitación incorrecta de una ruta a un directorio restringido ('Path Traversal') en Chetan Khandla Woocommerce Product Design permite Path Traversal. Este problema afecta a Woocommerce Product Design: desde n/a hasta 1.0.0. The Woocommerce Product Design plugi... • https://github.com/RandomRobbieBF/CVE-2024-50508 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •
CVSS: 9.8EPSS: 23%CPEs: 1EXPL: 1CVE-2024-50509 – WordPress Woocommerce Product Design plugin <= 1.0.0 - Arbitrary File Deletion vulnerability
https://notcve.org/view.php?id=CVE-2024-50509
28 Oct 2024 — Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Chetan Khandla Woocommerce Product Design allows Path Traversal.This issue affects Woocommerce Product Design: from n/a through 1.0.0. La vulnerabilidad de limitación incorrecta de una ruta a un directorio restringido ('Path Traversal') en Chetan Khandla Woocommerce Product Design permite Path Traversal. Este problema afecta a Woocommerce Product Design: desde n/a hasta 1.0.0. The Woocommerce Product Design plugi... • https://github.com/RandomRobbieBF/CVE-2024-50509 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •
CVSS: 10.0EPSS: 28%CPEs: 1EXPL: 1CVE-2024-50482 – WordPress Woocommerce Product Design plugin <= 1.0.0 - Arbitrary File Upload vulnerability
https://notcve.org/view.php?id=CVE-2024-50482
25 Oct 2024 — Unrestricted Upload of File with Dangerous Type vulnerability in Chetan Khandla Woocommerce Product Design allows Upload a Web Shell to a Web Server.This issue affects Woocommerce Product Design: from n/a through 1.0.0. La vulnerabilidad de carga sin restricciones de archivos con tipo peligroso en Chetan Khandla Woocommerce Product Design permite cargar un shell web a un servidor web. Este problema afecta a Woocommerce Product Design: desde n/a hasta 1.0.0. The Woocommerce Product Design plugin for WordPres... • https://github.com/RandomRobbieBF/CVE-2024-50482 • CWE-434: Unrestricted Upload of File with Dangerous Type •