MPG
Themeisle
Developer
4.1.5
Latest version
2,000
Installations
No date
Last updated
Vulnerability history
0 present
12 patched
3 Mitigation rules
- Authenticated (Editor+) Server-Side Request Forgery via fileUrl vulnerability<= 4.0.527/01/2025
- Authenticated (Editor+) Directory Traversal to Limited File Deletion vulnerability<= 4.0.212/11/2024
- Missing Authorization vulnerability<= 4.0.131/10/2024
- SQL Injection vulnerability<= 3.4.725/09/2024
- Cross Site Request Forgery (CSRF) vulnerability<= 3.4.005/04/2024
- Broken Access Control vulnerability<= 3.4.026/03/2024
- Remote Code Execution (RCE) vulnerability<= 3.4.013/03/2024
- Reflected Cross Site Scripting (XSS) vulnerability<= 2.8.1219/07/2023
- SQL Injection vulnerability<= 3.3.1923/05/2023
- Authenticated (Administrator+) SQL Injection vulnerability<= 3.3.1716/05/2023
- Cross-Site Request Forgery vulnerability<= 3.3.1716/05/2023
- Cross Site Request Forgery (CSRF)<= 3.3.920/02/2023