{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-06-26T03:26:48.089","vulnerabilities":[{"cve":{"id":"CVE-2024-50525","sourceIdentifier":"audit@patchstack.com","published":"2024-11-04T14:15:14.983","lastModified":"2026-06-17T08:04:37.713","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Unrestricted Upload of File with Dangerous Type vulnerability in helloprint Helloprint helloprint allows Upload a Web Shell to a Web Server.This issue affects Helloprint: from n/a through <= 2.0.4."},{"lang":"es","value":"Vulnerabilidad de carga sin restricciones de archivo con tipo peligroso en Helloprint Plug your WooCommerce al catálogo más grande de productos de impresión personalizados de Helloprint permite cargar un Web Shell a un servidor web. Este problema afecta a Plug your WooCommerce al catálogo más grande de productos de impresión personalizados de Helloprint: desde n/a hasta 2.0.2."}],"affected":[{"source":"audit@patchstack.com","affectedData":[{"vendor":"helloprint","product":"Helloprint","defaultStatus":"unaffected","collectionURL":"https://wordpress.org/plugins","packageName":"helloprint","versions":[{"version":"0","lessThanOrEqual":"2.0.4","versionType":"custom","status":"affected","changes":[{"at":"2.0.5","status":"unaffected"}]}]}]},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","affectedData":[{"vendor":"helloprint","product":"helloprint","defaultStatus":"unaffected","cpes":["cpe:2.3:a:helloprint:helloprint:-:*:*:*:*:wordpress:*:*"],"versions":[{"version":"0","lessThanOrEqual":"2.0.2","versionType":"custom","status":"affected"}]}]}],"metrics":{"cvssMetricV31":[{"source":"audit@patchstack.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H","baseScore":10.0,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":6.0},{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":9.8,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":5.9}],"ssvcV203":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","ssvcData":{"timestamp":"2024-11-04T15:30:18.996297Z","id":"CVE-2024-50525","options":[{"exploitation":"none"},{"automatable":"yes"},{"technicalImpact":"total"}],"role":"CISA Coordinator","version":"2.0.3"}}]},"weaknesses":[{"source":"audit@patchstack.com","type":"Secondary","description":[{"lang":"en","value":"CWE-434"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:helloprint:helloprint:*:*:*:*:*:wordpress:*:*","versionEndIncluding":"2.0.2","matchCriteriaId":"22AC50B9-EF2F-4D67-971B-9EA549A7F4C7"}]}]}],"references":[{"url":"https://patchstack.com/database/Wordpress/Plugin/helloprint/vulnerability/wordpress-helloprint-plugin-2-0-2-arbitrary-file-upload-vulnerability?_s_id=cve","source":"audit@patchstack.com"}]}}]}