High Vulnerabilities
| Primary Vendor — Product |
Description | Published | CVSS Score | Source & Patch Info |
|---|---|---|---|---|
| actpro — extra_product_options_for_woocommerce |
Missing Authorization vulnerability in actpro Extra Product Options for WooCommerce.This issue affects Extra Product Options for WooCommerce: from n/a through 3.0.6. | 2024-06-10 | 8.8 | CVE-2024-35727 audit@patchstack.com |
| adfinis–document-merge-service |
Document Merge Service is a document template merge service providing an API to manage templates and merge them with given data. Versions 6.5.1 and prior are vulnerable to remote code execution via server-side template injection which, when executed as root, can result in full takeover of the affected system. As of time of publication, no patched version exists, nor have any known workarounds been disclosed. | 2024-06-11 | 9.9 | CVE-2024-37301 This article has been indexed from Bulletins Read the original article: Post navigation |