Motovnet Ebook Store
5 CVEs affecting Motovnet Ebook Store. Latest disclosed: 2025-07-24. Critical: 1, High: 0.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2025-7437 | Critical | 9.8 | 2025-07-24 | The Ebook Store plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the ebook_store_save_form function in all v… |
CVE-2024-12262 | Medium | 6.1 | 2024-12-21 | The Ebook Store plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'step' parameter in all versions up to, and including, 5.8001 due… |
CVE-2024-11287 | Medium | 6.1 | 2024-12-21 | The Ebook Store plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg without appropriate escaping on the URL in… |
CVE-2024-6567 | Medium | 5.3 | 2024-08-02 | The Ebook Store plugin for WordPress is vulnerable to Full Path Disclosure in all versions up to, and including, 5.8001. This is due to the plugin utilizing fp… |
CVE-2025-7486 | Medium | 4.4 | 2025-07-21 | The Ebook Store plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Order Details in all versions up to, and including, 5.8012 due to ins… |