Vendor
Dukapress Project
Products
1
CVEs
2
Across products
2
Status
Private
Products
1- 2 CVEs
Recent CVEs
2| CVE | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2015-1000011 | Cri | 0.64 | 9.8 | 0.06 | Oct 6, 2016 | Blind SQL Injection in wordpress plugin dukapress v2.5.9 | |
| CVE-2014-8799 | 0.10 | — | 0.91 | Nov 28, 2014 | Directory traversal vulnerability in the dp_img_resize function in php/dp-functions.php in the DukaPress plugin before 2.5.4 for WordPress allows remote attackers to read arbitrary files via a .. (dot dot) in the src parameter to lib/dp_image.php. |
- risk 0.64cvss 9.8epss 0.06
Blind SQL Injection in wordpress plugin dukapress v2.5.9
- CVE-2014-8799Nov 28, 2014risk 0.10cvss —epss 0.91
Directory traversal vulnerability in the dp_img_resize function in php/dp-functions.php in the DukaPress plugin before 2.5.4 for WordPress allows remote attackers to read arbitrary files via a .. (dot dot) in the src parameter to lib/dp_image.php.