Magazine3 Pwa For Wp – Progressive Web Apps Made Simple
2 CVEs affecting Magazine3 Pwa For Wp – Progressive Web Apps Made Simple. Latest disclosed: 2023-06-07. Critical: 0, High: 1.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2021-4354 | High | 8.8 | 2023-06-07 | The PWA for WP & AMP for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the pwaforwp_splashscreen_uploader function i… |
CVE-2021-4366 | Medium | 6.3 | 2023-06-07 | The PWA for WP & AMP plugin for WordPress is vulnerable to authorization bypass due to a missing capability check on the pwaforwp_update_features_options func… |