uListing
Stylemix
Developer
2.2.0
Latest version
1,000
Installations
No date
Last updated
Vulnerability history
6 present
15 patched
13 Mitigation rules
- Arbitrary File Download vulnerability<= 2.2.026/02/2026
- WordPress Directory Listings WordPress plugin - uListing plugin <= 2.2.0 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Post Meta Update and PHP Object Injection vulnerability<= 2.2.031/12/2025
- PHP Object Injection vulnerability<= 2.2.022/04/2025
- Deserialization of untrusted data vulnerability<= 2.2.015/04/2025
- SQL Injection vulnerability<= 2.2.004/04/2025
- Authenticated (Subscriber+) Privilege Escalation vulnerability<= 2.1.726/03/2025
- SQL Injection vulnerability<= 2.1.603/02/2025
- SQL Injection vulnerability<= 2.1.603/02/2025
- Sensitive Data Exposure vulnerability<= 2.1.527/09/2024
- Authenticated Insecure Direct Object References (IDOR) vulnerability<= 2.0.527/07/2021
- Authenticated Reflected Cross-Site Scripting (XSS) vulnerability<= 2.0.527/07/2021
- Multiple Cross-Site Request Forgery (CSRF) vulnerabilities<= 2.0.527/07/2021
- Modify User Roles via Cross-Site Request Forgery (CSRF) vulnerability<= 2.0.527/07/2021
- Settings Update via Cross-Site Request Forgery (CSRF) vulnerability<= 2.0.527/07/2021
- Unauthenticated Privilege Escalation vulnerability<= 2.0.527/07/2021
- Unauthenticated SQL Injection (SQLi) vulnerability<= 2.0.326/07/2021
- Unauthenticated Information Disclosure vulnerability<= 1.6.628/01/2021
- Multiple Unauthenticated SQL Injection (SQLi) vulnerabilities<= 1.6.628/01/2021
- Unauthenticated Arbitrary Post/Page Deletion vulnerability<= 1.6.628/01/2021
- Unauthenticated Arbitrary Roles and Capabilities Creation/Deletion vulnerability<= 1.6.628/01/2021
- Unauthenticated Arbitrary Account Creation/Change vulnerability<= 1.6.628/01/2021