Dukapress

CVEs (2)

CVE	Sev	Risk	CVSS	EPSS	KEV	Published	Description
CVE-2015-1000011	Cri	0.64	9.8	0.06		Oct 6, 2016	Blind SQL Injection in wordpress plugin dukapress v2.5.9
CVE-2014-8799		0.10	—	0.91		Nov 28, 2014	Directory traversal vulnerability in the dp_img_resize function in php/dp-functions.php in the DukaPress plugin before 2.5.4 for WordPress allows remote attackers to read arbitrary files via a .. (dot dot) in the src parameter to lib/dp_image.php.

CVE-2015-1000011CriOct 6, 2016
risk 0.64cvss 9.8epss 0.06
Blind SQL Injection in wordpress plugin dukapress v2.5.9
CVE-2014-8799Nov 28, 2014
risk 0.10cvss —epss 0.91
Directory traversal vulnerability in the dp_img_resize function in php/dp-functions.php in the DukaPress plugin before 2.5.4 for WordPress allows remote attackers to read arbitrary files via a .. (dot dot) in the src parameter to lib/dp_image.php.