Known Vulnerabilities for products from Cridio
Listed below are 10 of the newest known vulnerabilities associated with the vendor "Cridio".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2024-39624 | Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in CridioStudio ListingPro listi... | Not Provided | 2024-08-01 | 2026-04-01 |
| CVE-2024-39623 | Cross-Site Request Forgery (CSRF) vulnerability in CridioStudio ListingPro listingpro allows Authentication Bypass.This issue... | Not Provided | 2025-01-02 | 2026-04-01 |
| CVE-2024-39622 | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in CridioStudio ListingPro... | Not Provided | 2024-08-29 | 2026-04-01 |
| CVE-2024-39621 | Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in CridioStudio ListingPro listi... | Not Provided | 2024-08-01 | 2026-04-01 |
| CVE-2024-39620 | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in CridioStudio ListingPro... | Not Provided | 2024-08-29 | 2026-04-01 |
| CVE-2024-39619 | Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in CridioStudio ListingPro listi... | Not Provided | 2024-08-01 | 2026-04-01 |
| CVE-2024-38795 | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in CridioStudio ListingPro... | Not Provided | 2024-08-29 | 2026-04-01 |
| CVE-2019-19542 | The ListingPro theme before v2.0.14.2 for WordPress has Persistent XSS via the Good For field on the new listing submit page. | 5.4 - MEDIUM | 2019-12-26 | 2019-12-30 |
| CVE-2019-19541 | The ListingPro theme before v2.0.14.2 for WordPress has Persistent XSS via the Best Day/Night field on the new listing submit... | 5.4 - MEDIUM | 2019-12-26 | 2020-01-02 |
| CVE-2019-19540 | The ListingPro theme before v2.0.14.2 for WordPress has Reflected XSS via the What field on the homepage. | 6.1 - MEDIUM | 2019-12-26 | 2019-12-30 |
Known software with vulnerabilities from Cridio
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Cridio | Listingpro | 2.0.14.2 |