Mojoomla Wordpress Gym Management System — known CVE vulnerabilities
Every CVE whose affected-product data names Mojoomla Wordpress Gym Management System, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2024-9942 — CVSS 9.8 (critical): The WPGYM - Wordpress Gym Management System plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type…
CVE-2024-9941 — CVSS 8.8 (high): The WPGYM - Wordpress Gym Management System plugin for WordPress is vulnerable to privilege escalation due to a missing capability check on…