Superstorefinder Super Store Finder — known CVE vulnerabilities
Every CVE whose affected-product data names Superstorefinder Super Store Finder, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (10)
CVE-2023-41507 — CVSS 9.8 (critical): Super Store Finder v3.6 was discovered to contain multiple SQL injection vulnerabilities in the store locator component via the products…
CVE-2024-43976 — CVSS 9.3 (critical): Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in highwarden Super Store Finder…
CVE-2024-43978 — CVSS 9.3 (critical): Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in highwarden Super Store Finder…
CVE-2023-43835 — CVSS 8.8 (high): Super Store Finder 3.7 and below is vulnerable to authenticated Arbitrary PHP Code Injection that could lead to Remote Code Execution when…
CVE-2024-13440 — CVSS 8.2 (high): The Super Store Finder plugin for WordPress is vulnerable to SQL Injection via the ‘ssf_wp_user_name’ parameter in all versions up to…
CVE-2023-44044 — CVSS 7.2 (high): Super Store Finder v3.6 and below was discovered to contain a SQL injection vulnerability via the Search parameter at /admin/stores.php.
CVE-2024-43975 — CVSS 7.1 (high): Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in highwarden Super Store Finder…
CVE-2023-3751 — CVSS 6.3 (medium): A vulnerability was found in Super Store Finder 3.6. It has been declared as critical. Affected by this vulnerability is an unknown…
CVE-2023-5054 — CVSS 5.8 (medium): The Super Store Finder plugin for WordPress is vulnerable to unauthenticated arbitrary email creation and relay in versions up to, and…