Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

Filtered by vendor Webkul Subscribe
Total 4 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2021-41924 1 Webkul 1 Krayin 2022-06-28 4.3 MEDIUM 6.1 MEDIUM
Webkul krayin crm before 1.2.2 is vulnerable to Cross Site Scripting (XSS).
CVE-2019-16403 1 Webkul 1 Bagisto 2020-08-24 6.5 MEDIUM 8.8 HIGH
In Webkul Bagisto before 0.1.5, the functionalities for customers to change their own values (such as address, review, orders, etc.) can also be manipulated by other customers.
CVE-2019-14933 1 Webkul 1 Bagisto 2019-08-14 6.8 MEDIUM 8.8 HIGH
Bagisto 0.1.5 allows CSRF under /admin URIs.
CVE-2010-1659 2 Joomla, Webkul 2 Joomla\!, Com Ultimateportfolio 2017-08-16 5.0 MEDIUM N/A
Directory traversal vulnerability in the Ultimate Portfolio (com_ultimateportfolio) component 1.0 for Joomla! allows remote attackers to read arbitrary files via a .. (dot dot) in the controller parameter to index.php.