All 8 CVE vulnerabilities found in MStore API, with AI-generated Chinese analysis, references, and POCs.
Vendor: Unknown
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2023-50878 | WordPress MStore API Plugin <= 4.10.1 is vulnerable to Cross Site Request Forgery (CSRF) CWE-352 | 5.4 | Medium | 2023-12-29 |
| CVE-2023-45055 | WordPress MStore API Plugin <= 4.0.6 is vulnerable to SQL Injection CWE-89 | 9.8 | - | 2023-11-06 |
| CVE-2023-3131 | MStore API < 3.9.7 - Subscriber+ Unauthorized Settings Update | 9.1 | - | 2023-07-10 |
| CVE-2023-3209 | MStore API < 3.9.7 - Settings Update via CSRF | 9.1 | - | 2023-07-10 |
| CVE-2023-3077 | MStore API < 3.9.8 - Unauthenticated Blind SQLi | 9.8 | - | 2023-07-10 |
| CVE-2023-3076 | MStore API < 3.9.9 - Unauthenticated Privilege Escalation | 8.1 | - | 2023-07-10 |
| CVE-2022-47614 | WordPress MStore API Plugin <= 3.9.7 is vulnerable to SQL Injection CWE-89 | 7.5 | High | 2023-06-23 |
| CVE-2021-24148 | MStore API < 3.2.0 - Authentication Bypass With Sign In With Apple CWE-287 | 7.5 | - | 2021-03-18 |
All 8 known CVE vulnerabilities affecting MStore API with full Chinese analysis, references, and POCs where available.