Known Vulnerabilities for products from Cridio
Listed below are 12 of the newest known vulnerabilities associated with the vendor "Cridio".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2024-39624 json | Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in CridioStudio ListingPro listi... | Not Provided | 2024-08-01 | 2026-04-23 |
| CVE-2024-39623 json | Cross-Site Request Forgery (CSRF) vulnerability in CridioStudio ListingPro listingpro allows Authentication Bypass.This issue... | Not Provided | 2025-01-02 | 2026-04-23 |
| CVE-2024-39622 json | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in CridioStudio ListingPro... | Not Provided | 2024-08-29 | 2026-04-23 |
| CVE-2024-39621 json | Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in CridioStudio ListingPro listi... | Not Provided | 2024-08-01 | 2026-04-23 |
| CVE-2024-39620 json | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in CridioStudio ListingPro... | Not Provided | 2024-08-29 | 2026-04-23 |
| CVE-2024-39619 json | Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in CridioStudio ListingPro listi... | Not Provided | 2024-08-01 | 2026-04-23 |
| CVE-2024-38795 json | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in CridioStudio ListingPro... | Not Provided | 2024-08-29 | 2026-04-23 |
| CVE-2020-36723 json | The ListingPro - WordPress Directory & Listing Theme for WordPress is vulnerable to Sensitive Data Exposure in versions befor... | Not Provided | 2023-06-07 | 2026-04-08 |
| CVE-2020-36719 json | The ListingPro - WordPress Directory & Listing Theme for WordPress is vulnerable to Arbitrary Plugin Installation, Activation... | Not Provided | 2023-06-07 | 2026-04-08 |
| CVE-2019-19542 json | The ListingPro theme before v2.0.14.2 for WordPress has Persistent XSS via the Good For field on the new listing submit page. | 5.4 - MEDIUM | 2019-12-26 | 2019-12-30 |
| CVE-2019-19541 json | The ListingPro theme before v2.0.14.2 for WordPress has Persistent XSS via the Best Day/Night field on the new listing submit... | 5.4 - MEDIUM | 2019-12-26 | 2020-01-02 |
| CVE-2019-19540 json | The ListingPro theme before v2.0.14.2 for WordPress has Reflected XSS via the What field on the homepage. | 6.1 - MEDIUM | 2019-12-26 | 2019-12-30 |
Known software with vulnerabilities from Cridio
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Cridio | Listingpro | 2.0.14.2 |