8theme xstore_core の CVE（8 件）

CVE 件数: 8 CPE versions: View versions table

概要

本ページは 8theme xstore_core に影響する公開済み CVE（NVD の CPE 経由で関連付け）を列挙します。各行に深刻度指標・概要・公開日が含まれます。

CVE	概要	ソース	CVSS 最大値	EPSS（%）	公開	更新
CVE-2024-33555	Missing Authorization vulnerability in 8theme XStore Core.This issue affects XStore Core: from n/a through 5.3.8.	[email protected]	8.1	0.33%	2024-06-09	2024-11-21
CVE-2024-33557	Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in 8theme XStore Core allows PHP Local File Inclusion.This issue affects XStore Core: from n/a through 5.3.8.	[email protected]	8.5	1.66%	2024-06-04	2025-02-26
CVE-2024-33552	Improper Privilege Management vulnerability in 8theme XStore Core allows Privilege Escalation.This issue affects XStore Core: from n/a through 5.3.8.	[email protected]	9.8	0.53%	2024-05-17	2025-04-10
CVE-2024-33556	Unrestricted Upload of File with Dangerous Type vulnerability in 8theme XStore Core.This issue affects XStore Core: from n/a through 5.3.8.	[email protected]	8.2	0.84%	2024-05-17	2025-03-03
CVE-2024-33558	Missing Authorization vulnerability in 8theme XStore Core.This issue affects XStore Core: from n/a through 5.3.5.	[email protected]	6.5	0.46%	2024-04-29	2026-04-28
CVE-2024-33553	Deserialization of Untrusted Data vulnerability in 8theme XStore Core.This issue affects XStore Core: from n/a through 5.3.5.	[email protected]	9.0	0.69%	2024-04-29	2026-04-28
CVE-2024-33554	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in 8theme XStore Core allows Reflected XSS.This issue affects XStore Core: from n/a through 5.3.5.	[email protected]	7.1	0.25%	2024-04-29	2026-04-28
CVE-2024-33551	Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in 8theme XStore Core allows SQL Injection.This issue affects XStore Core: from n/a through 5.3.5.	[email protected]	9.3	0.59%	2024-04-29	2026-04-28

cvelogic Threat Intelligence