VYPR

Woo Binary Mlm

by WordPress

Source repositories

CVEs (2)

  • CVE-2024-12384MedJan 7, 2025
    risk 0.33cvss 6.1epss 0.00

    The Binary MLM Woocommerce plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'page’ parameter in all versions up to, and including, 2.0 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers…

  • CVE-2024-12383MedJan 7, 2025
    risk 0.33cvss 6.1epss 0.00

    The Binary MLM Woocommerce plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2.0. This is due to missing or incorrect nonce validation on the 'bmw_display_pv_set_page' function and insufficient input sanitization and output…