The Ultimate Product Catalog plugin for WordPress has security vulnerabilities in versions up to 3.1.2. These vulnerabilities could allow unauthenticated attackers to inject malicious code into pages if they can get a user to click a link, and authenticated attackers to upload malicious files to the website’s server which could lead to remote code execution.
This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!
Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:
> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21
Is this information incorrect? Please leave us a message.
