Magazine3 Pwa For Wp & Amp — known CVE vulnerabilities
Every CVE whose affected-product data names Magazine3 Pwa For Wp & Amp, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (4)
CVE-2021-4354 — CVSS 8.8 (high): The PWA for WP & AMP for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the…
CVE-2021-4366 — CVSS 6.3 (medium): The PWA for WP & AMP plugin for WordPress is vulnerable to authorization bypass due to a missing capability check on the…
CVE-2024-7759 — CVSS 4.8 (medium): The PWA for WP WordPress plugin before 1.7.72 does not sanitise and escape some of its settings, which could allow high privilege users…
CVE-2024-47318 — CVSS 4.3 (medium): Missing Authorization vulnerability in Magazine3 PWA for WP & AMP pwa-for-wp.This issue affects PWA for WP & AMP: from n/a through <=…