Skip to content

RadicalNotion.AI

We do not sell or share your personal information

© 2026 RadicalNotion.AI

Security Data

CWE Directory
CAPEC Directory
CNA Directory
CNA Report Cards
Data Sources

Calculators

CVSS Calculator
CVSS 4.0
CVSS 3.1
CVSS 3.0
CVSS 2.0

Platform

My Vulnerabilities
Insights
Notifications
Account
Pricing

Learn

All guides
What is a CVE?
What is CVSS?
The CISA KEV catalog
What is EPSS?

Company

About us
Blog
Book a demo

Get Started

Sign up
Log in

Legal

Privacy
Terms

Security data

Weaknesses (CWE)The MITRE CWE weakness catalog
Attack Patterns (CAPEC)MITRE CAPEC attack patterns
CNAsNumbering authorities + report cards
VendorsVulnerabilities by vendor

Tools

CVSS CalculatorScore CVSS 4.0, 3.1, 3.0 & 2.0

Resources

LearnPlain-English security guides
Data SourcesHow we source CVE data

About Us Blog Pricing Book a Demo

Log in

Home
Vendors
Inspireui
Mstore Api

inspireui mstore api Vulnerabilities: CVEs, CISA KEV & Security Advisories

28 CVEs

inspireui mstore api Vulnerabilities

CVE security advisories and vulnerability history for mstore api by inspireui.

28

Total CVEs

Published

0

In CISA KEV

Exploited in the wild

4

Public exploits

With known exploit

6.9

Avg CVSS

2021–2025

Last updated May 27, 2025

Overview

inspireui mstore api has 28 published CVE records since 2021, of which 0 are in CISA's Known Exploited Vulnerabilities catalog and 4 have a known public exploit. The average CVSS base score across scored CVEs is 6.9.

This page aggregates every publicly disclosed vulnerability (CVE) affecting inspireui mstore api, with a severity breakdown, the affected and patched versions, the most common weakness types, and the full CVE list.

Severity and exploitation

How the CVSS severity of inspireui mstore api's CVEs breaks down, plus how many are exploited in the wild or have public exploit code.

Critical8

High3

Medium12

Low0

5 additional CVEs have no CVSS severity score.

In CISA’s Known Exploited Vulnerabilities catalog

0

None of inspireui mstore api's CVEs are currently listed in CISA's KEV catalog.

Public exploits

4

4 of inspireui mstore api's CVEs have a known public exploit available.

Affected versions and CVEs

Browse every inspireui mstore api version named in a CVE, then pick one to see only the CVEs that affect it.

Fixed in

3.9.72 CVEs
3.9.82 CVEs
4.15.42 CVEs
> 3.9.71 CVE
> 4.0.61 CVE
> 4.10.11 CVE
3.2.01 CVE
3.9.91 CVE
4.0.71 CVE
4.10.21 CVE
4.15.01 CVE
4.15.31 CVE
4.15.81 CVE
4.16.51 CVE
4.17.51 CVE
4.17.61 CVE

Find a version

28 CVEs

Sort

MStore API – Create Native Android & iOS Apps On The Cloud <= 4.17.5 - Missing Authorization to Authenticated (Subscriber+) Posts Creation
CVE-2025-4683
Patch
CWE-862
Medium · CVSS 4.3
EPSS 0.2% (43th pct)2025-05-27
MStore API – Create Native Android & iOS Apps On The Cloud <= 4.17.4 - Unauthenticated Limited Privilege Escalation
CVE-2025-3438
Patch
CWE-269
Medium · CVSS 6.5
EPSS 0.5% (66th pct)2025-05-02
MStore API – Create Native Android & iOS Apps On The Cloud <= 4.16.4 - Authenticated (Subscriber+) HTML File Upload (Stored Cross-Site Scripting)
CVE-2024-12042
Patch
CWE-434
Medium · CVSS 5.4
EPSS 0.2% (46th pct)2024-12-13
MStore API <= 4.15.7 - Authenticated (Subscriber+) SQL Injection
CVE-2024-11179
Patch
CWE-89
Medium · CVSS 6.5
EPSS 0.4% (60th pct)2024-11-20
MStore API – Create Native Android & iOS Apps On The Cloud <= 4.15.3 - Authenticated (Subscriber+) Limited Arbitrary File Upload
CVE-2024-8242
Patch
CWE-434
Medium · CVSS 4.3
EPSS 1.6% (82th pct)2024-09-13
MStore API – Create Native Android & iOS Apps On The Cloud <= 4.15.3 - Unauthorized User Registration
CVE-2024-8269
Patch
CWE-284
High · CVSS 7.3
EPSS 0.4% (60th pct)2024-09-13
MStore API – Create Native Android & iOS Apps On The Cloud <= 4.15.2 - Authentication Bypass to Account Takeover
CVE-2024-7628
Patch
CWE-288
High · CVSS 8.1
EPSS 1.3% (80th pct)2024-08-15
MStore API – Create Native Android & iOS Apps On The Cloud <= 4.14.7 - Authentication Bypass
CVE-2024-6328
Patch
CWE-288
Critical · CVSS 9.8
EPSS 0.6% (69th pct)2024-07-12
WordPress MStore API Plugin <= 4.10.1 is vulnerable to Cross Site Request Forgery (CSRF)
CVE-2023-50878
Patch
CWE-352
Medium · CVSS 5.4
EPSS 0.1% (29th pct)2023-12-29
WordPress MStore API Plugin <= 4.0.6 is vulnerable to SQL Injection
CVE-2023-45055
Patch
CWE-89
Critical · CVSS 9.8
EPSS 0.1% (35th pct)2023-11-06
MStore API <= 4.10.7 - Unauthorized Account Access and Privilege Escalation
CVE-2023-3277
Patch
CWE-288
Critical · CVSS 9.8
EPSS 47.2% (98th pct)2023-11-03
MStore API <= 3.9.6 - Cross-Site Request Forgery to Firebase Server Key Update
CVE-2023-3202
Patch
CWE-352
Medium · CVSS 4.3
EPSS 0.1% (33th pct)2023-07-12
MStore API <= 3.9.6 - Cross-Site Request Forgery to Order Title Update
CVE-2023-3199
Patch
CWE-352
Medium · CVSS 4.3
EPSS 0.1% (29th pct)2023-07-12
Vulnerability · 2023-07-10
CVE-2023-3131
Public exploit
Patch
Unscored
EPSS 0.3% (53th pct)2023-07-10
Vulnerability · 2023-07-10
CVE-2023-3209
Public exploit
Patch
Unscored
EPSS 0.1% (27th pct)2023-07-10
Vulnerability · 2023-07-10
CVE-2023-3077
Public exploit
Patch
Unscored
EPSS 68.1% (99th pct)2023-07-10
Vulnerability · 2023-07-10
CVE-2023-3076
Public exploit
Patch
Unscored
EPSS 30.4% (97th pct)2023-07-10
MStore API <= 4.0.1 - Unauthenticated SQL Injection
CVE-2023-3197
Patch
CWE-89
Critical · CVSS 9.8
EPSS 29.6% (97th pct)2023-06-24
WordPress MStore API Plugin <= 3.9.7 is vulnerable to SQL Injection
CVE-2022-47614
Patch
CWE-89
High · CVSS 7.5
EPSS 0.2% (37th pct)2023-06-23
MStore API <= 3.9.6 - Cross-Site Request Forgery to Order Title Update
CVE-2023-3201
Patch
CWE-352
Medium · CVSS 4.3
EPSS 0.1% (35th pct)2023-06-14
MStore API <= 3.9.6 - Cross-Site Request Forgery to Order Status Update
CVE-2023-3198
Patch
CWE-352
Medium · CVSS 4.3
EPSS 0.2% (37th pct)2023-06-14
MStore API <= 3.9.6 - Cross-Site Request Forgery to Order Message Update
CVE-2023-3200
Patch
CWE-352
Medium · CVSS 4.3
EPSS 0.1% (35th pct)2023-06-14
MStore API <= 3.9.6 - Cross-Site Request Forgery to Product Limit Update
CVE-2023-3203
Patch
CWE-352
Medium · CVSS 4.3
EPSS 0.2% (48th pct)2023-06-14
MStore API <= 2.1.5 - Authentication Bypass
CVE-2020-36713
Patch
CWE-288
Critical · CVSS 9.8
EPSS 0.9% (76th pct)2023-06-07
MStore API <= 3.9.2 - Authentication Bypass
CVE-2023-2732
Patch
CWE-288
Critical · CVSS 9.8
EPSS 91.5% (100th pct)2023-05-25
MStore API <= 3.9.0 - Authentication Bypass
CVE-2023-2733
Patch
CWE-288
Critical · CVSS 9.8
EPSS 0.4% (62th pct)2023-05-25
MStore API <= 3.9.1 - Authentication Bypass
CVE-2023-2734
Patch
CWE-288
Critical · CVSS 9.8
EPSS 72.3% (99th pct)2023-05-25
Vulnerability · 2021-03-18
CVE-2021-24148
Patch
CWE-287
Unscored
EPSS 5.6% (91th pct)2021-03-18

Common weakness types

The CWE weakness categories most often found in inspireui mstore api CVEs. Follow any weakness for its full explanation.

CWE-288Authentication Bypass Using an Alternate Path or Channel7 CVEs
CWE-352Cross-Site Request Forgery (CSRF)7 CVEs
CWE-89Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')4 CVEs
CWE-434Unrestricted Upload of File with Dangerous Type2 CVEs
CWE-287Improper Authentication1 CVE
CWE-284Improper Access Control1 CVE
CWE-862Missing Authorization1 CVE
CWE-269Improper Privilege Management1 CVE

Disclosure activity by year

How many inspireui mstore api CVEs were published each year.

2021

1

2023

19

2024

6

2025

2

Other inspireui products

Browse vulnerabilities for other products by inspireui.

MStore API – Create Native Android & iOS Apps On The Cloud21 CVEs mstore_api1 CVEs mstore_api_create_native_android_and_ios_apps_on_the_cloud1 CVEs

All inspireui vulnerabilities

Frequently asked questions

Common questions about inspireui mstore api vulnerabilities.

How many CVEs does inspireui mstore api have?

inspireui mstore api has 28 published CVE records since 2021.

How many inspireui mstore api CVEs are in CISA KEV?

None of inspireui mstore api's CVEs are currently listed in CISA's Known Exploited Vulnerabilities catalog.

Are there public exploits for inspireui mstore api vulnerabilities?

Yes — 4 of inspireui mstore api's CVEs have a known public exploit.

Which versions of inspireui mstore api are affected?

16 distinct inspireui mstore api versions are named across its CVEs. Use the version filter above to see the CVEs affecting a specific version.

What are the most common weakness types in inspireui mstore api CVEs?

inspireui mstore api's CVEs most often map to these CWE weakness types: CWE-288 (Authentication Bypass Using an Alternate Path or Channel), CWE-352 (Cross-Site Request Forgery (CSRF)), CWE-89 (Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')), CWE-434 (Unrestricted Upload of File with Dangerous Type).

How many critical inspireui mstore api vulnerabilities are there?

inspireui mstore api has 8 critical and 3 high-severity CVEs.

What is the average severity of inspireui mstore api CVEs?

The average CVSS base score across inspireui mstore api's scored CVEs is 6.9.

References

All inspireui vulnerabilities
The MITRE CVE Program (opens in a new tab)
Learn: What is a CVE?
CWE directory: the weakness types these CVEs map to

Vulnerability data is sourced from the CVE Program; severity, KEV, and exploit signals are aggregated by RadicalNotion.AI.

Track inspireui mstore api vulnerabilities

Monitor new inspireui mstore api vulnerabilities as they are disclosed, with AI-written analysis and remediation guidance.

Start free See pricing

On this page

Overview
Severity and exploitation
Affected versions and CVEs
Common weakness types
Disclosure activity
Other products
FAQ
References