📦 Xstore Core

Name: Xstore Core
Author: 8theme

by 8theme

🔍 What is Xstore Core?

Description coming soon...

🛡️ Security Overview

Click on a severity to filter vulnerabilities

⚠️ Known Vulnerabilities

CVE-2024-33552

CRITICAL CVSS 9.8 May 17, 2024

This vulnerability allows unauthenticated attackers to escalate privileges in the XStore Core WordPress plugin. Attackers can gain administrative access to affected WordPress sites without requiring a...

CVE-2024-33553

CRITICAL CVSS 9.0 Apr 29, 2024

CVE-2024-33553 is an unauthenticated PHP object injection vulnerability in the XStore Core WordPress plugin. Attackers can exploit deserialization of untrusted data to execute arbitrary code on affect...

CVE-2024-33551

CRITICAL CVSS 9.3 Apr 29, 2024

This is an unauthenticated SQL injection vulnerability in the XStore Core WordPress plugin. Attackers can execute arbitrary SQL commands without authentication, potentially compromising the database. ...

CVE-2024-33557

HIGH CVSS 8.5 Jun 4, 2024

This CVE describes a path traversal vulnerability in the XStore Core WordPress plugin that allows attackers to include arbitrary local PHP files. This affects all WordPress sites running XStore Core v...