Known Vulnerabilities for products from Najeebmedia
Listed below are 19 of the newest known vulnerabilities associated with the vendor "Najeebmedia".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2024-49604 | Authentication Bypass Using an Alternate Path or Channel vulnerability in N-Media Simple User Registration wp-registration al... | Not Provided | 2024-10-20 | 2026-04-01 |
| CVE-2023-5105 | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 6.5 - MEDIUM | 2023-12-04 | 2023-12-07 |
| CVE-2022-4328 | The WooCommerce Checkout Field Manager WordPress plugin before 18.0 does not validate files to be uploaded, which could allow... | 9.8 - CRITICAL | 2023-03-06 | 2023-11-07 |
| CVE-2022-3126 | The Frontend File Manager Plugin WordPress plugin before 21.4 does not have CSRF check when uploading files, which could allo... | 4.3 - MEDIUM | 2022-10-17 | 2022-10-21 |
| CVE-2022-3125 | The Frontend File Manager Plugin WordPress plugin before 21.3 allows any authenticated users, such as subscriber, to rename a... | 8.8 - HIGH | 2022-10-03 | 2022-10-04 |
| CVE-2022-3124 | The Frontend File Manager Plugin WordPress plugin before 21.3 allows any unauthenticated user to rename uploaded files from u... | 5.3 - MEDIUM | 2022-10-03 | 2022-10-04 |
| CVE-2022-2398 | The WordPress Comments Fields WordPress plugin before 4.1 does not escape Field Error Message, which could allow high-privile... | 4.8 - MEDIUM | 2022-08-08 | 2022-08-11 |
| CVE-2021-25018 | The PPOM for WooCommerce WordPress plugin before 24.0 does not have authorisation and CSRF checks in the ppom_settings_panel_... | 5.4 - MEDIUM | 2022-02-14 | 2022-02-19 |
| CVE-2021-4369 | The Frontend File Manager plugin for WordPress is vulnerable to Unauthenticated Content Injection in versions up to, and incl... | 5.3 - MEDIUM | 2023-06-07 | 2023-11-07 |
| CVE-2021-4368 | The Frontend File Manager plugin for WordPress is vulnerable to Authenticated Settings Change in versions up to, and includin... | 8.8 - HIGH | 2023-06-07 | 2023-11-07 |
| CVE-2021-4365 | The Frontend File Manager plugin for WordPress is vulnerable to Unauthenticated Stored Cross-Site Scripting in versions up to... | 6.1 - MEDIUM | 2023-06-07 | 2023-11-07 |
| CVE-2021-4359 | The Frontend File Manager plugin for WordPress is vulnerable to Unauthenticated Arbitrary Post Deletion in versions up to, an... | 5.3 - MEDIUM | 2023-06-07 | 2023-11-07 |
| CVE-2021-4356 | The Frontend File Manager plugin for WordPress is vulnerable to Unauthenticated Arbitrary File Download in versions up to, ... | 9.8 - CRITICAL | 2023-06-07 | 2023-11-07 |
| CVE-2021-4351 | The Frontend File Manager plugin for WordPress is vulnerable to Unauthenticated Post Meta Change in versions up to, and inclu... | 5.3 - MEDIUM | 2023-06-07 | 2023-11-07 |
| CVE-2021-4350 | The Frontend File Manager plugin for WordPress is vulnerable to Unauthenticated HTML Injection in versions up to, and includi... | 5.3 - MEDIUM | 2023-06-07 | 2023-11-07 |
| CVE-2021-4344 | The Frontend File Manager plugin for WordPress is vulnerable to Privilege Escalation in versions up to, and including, 18.2. ... | 5.4 - MEDIUM | 2023-06-07 | 2023-11-07 |
| CVE-2019-14948 | The woocommerce-product-addon plugin before 18.4 for WordPress has XSS via an import of a new meta data structure. | 5.4 - MEDIUM | 2019-08-12 | 2023-02-24 |
| CVE-2019-5979 | Cross-site request forgery (CSRF) vulnerability in Personalized WooCommerce Cart Page 2.4 and earlier allows remote attackers... | 8.8 - HIGH | 2019-07-05 | 2022-10-11 |
| CVE-2014-5324 | Unrestricted file upload vulnerability in the N-Media file uploader plugin before 3.4 for WordPress allows remote authenticat... | 6.5 - MEDIUM | 2014-09-26 | 2014-09-27 |
Known software with vulnerabilities from Najeebmedia
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Najeebmedia | Personalized Woocommerce Cart Page | 1.0 |
| Application | Najeebmedia | Ppom For Woocommerce | 18.4 |