Business Directory
Strategy11 Team
Developer
6.4.22
Latest version
10,000
Installations
No date
Last updated
Vulnerability history
0 present
14 patched
3 Mitigation rules
- Unauthenticated SQL Injection via payment Parameter vulnerability<= 6.4.2118/02/2026
- Missing Authorization to Unauthenticated Arbitrary Listing Modification vulnerability<= 6.4.2018/02/2026
- Broken Access Control vulnerability<= 6.4.1915/12/2025
- Cross Site Request Forgery (CSRF) vulnerability<= 6.4.1903/12/2025
- Broken Access Control vulnerability<= 6.4.1819/10/2025
- Insecure Direct Object Reference to Listing Arbitrary Image Addition vulnerability<= 6.4.1412/03/2025
- Authenticated CSV Injection vulnerability<= 6.4.317/06/2024
- Unauthenticated SQL Injection via listingfields Parameter vulnerability<= 6.4.222/05/2024
- Broken Access Control vulnerability<= 6.3.927/12/2023
- Cross Site Request Forgery (CSRF) vulnerability<= 6.3.1028/11/2023
- Cross-Site Request Forgery (CSRF) vulnerability<= 5.11.112/04/2021
- Authenticated Stored Cross-Site Scripting (XSS) vulnerability<= 5.11.112/04/2021
- Arbitrary Listing Export vulnerability<= 5.11.112/04/2021
- Arbitrary File Upload vulnerability leading to Remote Code Execution (RCE)<= 5.10.111/04/2021