Codepeople Music Store — known CVE vulnerabilities
Every CVE whose affected-product data names Codepeople Music Store, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2024-36082 — CVSS 6.5 (medium): SQL injection vulnerability in Music Store - WordPress eCommerce versions prior to 1.1.14 allows a remote authenticated attacker with an…
CVE-2016-10992 — CVSS 6.1 (medium): The music-store plugin before 1.0.43 for WordPress has XSS via the wp-admin/admin.php?page=music-store-menu-reports from_year parameter.