The MStore API plugin for WordPress, which helps create apps for Android and iOS, has a security issue. This problem, known as Stored Cross-Site Scripting, allows attackers with certain access levels to upload harmful files that can run dangerous code when someone opens them. This vulnerability affects all versions up to 4.16.4 due to a lack of proper file checks.
This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!
Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:
> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21
Is this information incorrect? Please leave us a message.
