MStore API
FluxBuilder
Developer
4.18.2
Latest version
3,000
Installations
Oct 3, 2025
Last updated
Vulnerability history
0 present
24 fixed
15 Mitigation rules
- Missing Authorization to Authenticated (Subscriber+) Posts Creation vulnerability<= 4.17.5May 27, 2025
- Unauthenticated Limited Privilege Escalation vulnerability<= 4.17.4May 1, 2025
- Authenticated (Subscriber+) HTML File Upload (Stored Cross-Site Scripting) vulnerability<= 4.16.4Dec 12, 2024
- Authenticated (Subscriber+) SQL Injection vulnerability<= 4.15.7Nov 19, 2024
- Unauthorized User Registration vulnerability<= 4.15.3Sep 13, 2024
- Authenticated (Subscriber+) Limited Arbitrary File Upload vulnerability<= 4.15.3Sep 13, 2024
- Authentication Bypass to Account Takeover vulnerability<= 4.15.2Aug 15, 2024
- Authentication Bypass vulnerability<= 4.14.7Jul 12, 2024
- Cross Site Request Forgery (CSRF) vulnerability<= 4.10.1Dec 26, 2023
- Unauthorized Account Access and Privilege Escalation vulnerability<= 4.10.7Nov 6, 2023
- SQL Injection vulnerability<= 4.0.6Oct 3, 2023
- Unauth. SQL Injection (SQLi) vulnerability<= 4.0.1Jun 26, 2023
- SQL Injection<= 3.9.7Jun 19, 2023
- Cross-Site Request Forgery to Product Limit Update vulnerability<= 3.9.6Jun 14, 2023
- Cross-Site Request Forgery to Order Message Update vulnerability<= 3.9.6Jun 14, 2023
- Cross-Site Request Forgery to Order Title Update vulnerability<= 3.9.6Jun 14, 2023
- Cross-Site Request Forgery to Order Title Update vulnerability<= 3.9.6Jun 14, 2023
- Cross-Site Request Forgery to Order Status Update vulnerability<= 3.9.6Jun 14, 2023
- Cross-Site Request Forgery to Firebase Server Key Update vulnerability<= 3.9.6Jun 14, 2023
- Missing Authorization vulnerability< 3.9.6Jun 13, 2023
- Authentication Bypass vulnerability<= 3.9.1May 25, 2023
- Authentication Bypass vulnerability<= 3.9.2May 25, 2023
- Bypass vulnerability in Apple login authentication method<= 3.1.9Feb 2, 2021
- Unauthenticated Account Create/Edit vulnerability<= 2.1.5Mar 11, 2020