Headline
CVE-2023-5054: Super Store Finder - Best Selling Store Locator Plugin
The Super Store Finder plugin for WordPress is vulnerable to unauthenticated arbitrary email creation and relay in versions up to, and including, 6.9.2. This is due to insufficient restrictions on the sendMail.php file that allows direct access. This makes it possible for unauthenticated attackers to send emails utilizing the vulnerable site’s server, with arbitrary content. Please note that this vulnerability has already been publicly disclosed with an exploit which is why we are publishing the details without a patch available, we are attempting to initiate contact with the developer.
Products
About Us
Live Demos
Super Store Finder
Addon - Custom Marker
Addon - Marker Clusterer
Addon - Multi Categories
Addon - Exact Geo
Theme - Mega Locator
Theme - Compact
Super Store Finder for Wordpress
WP Addon - Custom Marker
WP Addon - Marker Clusterer
WP Addon - Multi Category
WP Addon - Distance Radius
WP Addon - Reviews & Ratings
WP Addon - Google Reviews
Super Logos Showcase
Super Product Variation Swatches
Super Responsive Accordion
WP Comment Image/Video
Super Interactive Maps
Standalone Store Finder
Custom Marker
Marker Clusterer
Multi Category
Exact Geo
Mega Locator
Compact
WordPress Store Finder
Custom Marker
Marker Clusterer
Multi Category
Distance Radius
Social Ratings
Google Reviews
Logos Showcase
Swatches
Accordion
WP Comments
Vector Maps
Community
- Forums
- Testimonials
- Affiliate Partner
- Free Markers
- Free Skins
- Patch Notes
- Real Examples
- Latest News
- Youtube
Knowledge Base
Support
- About Us
- Support
- Forums
- Testimonials
- Knowledge Base
- Affiliates
- Jobs
- Real Examples
- Latest News
- Privacy Policy
- AudioJungle
- ThemeForest
- VideoHive
- GraphicRiver
- 3DOcean
- CodeCanyon
- Tuts+ Marketplace
- PhotoDune
- Best Hosting/Domain
- Terms of Service
Newsletter
Join our newsletter to get updates on the latest news, tips, patch releases and upcoming products.
© Copyright 2023 Super Store Finder. All rights reserved.