Product Designer

PickPlugins

Developer

1.0.40

Latest version

600

Installations

No date

Last updated

WordPress Plugin

No VDP

Claim ownership

Report vulnerability

Vulnerabilities

Security Contributors

Vulnerability history

0 present

4 fixed

3 Mitigation rules

Authenticated (Author+) Stored Cross-Site Scripting via SVG File Upload vulnerability
<= 1.0.36
Nov 21, 2024
Arbitrary Content Deletion vulnerability
<= 1.0.33
Jul 11, 2024
Missing Authorization to Unauthenticated Arbitrary Attachment Deletion vulnerability
<= 1.0.33
Jul 9, 2024
PHP Object Injection vulnerability
<= 1.0.32
Apr 5, 2024