Lucene search
K

18 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-8711

Malicious code in bioql PyPI...

7.5CVSS9AI score0.00502EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2025-8223

Malicious code in bioql PyPI...

5.9CVSS9.2AI score0.00347EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/23 7:1 a.m.5 views

CVE-2024-11324

The Accounting for WooCommerce plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of addqueryarg without appropriate escaping on the URL in all versions up to, and including, 1.6.6. This makes it possible for unauthenticated attackers to inject arbitrary web scrip...

6.1CVSS6.4AI score0.00344EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/04/02 6:31 a.m.15 views

CVE-2025-30835

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Bastien Ho Accounting for WooCommerce accounting-for-woocommerce allows PHP Local File Inclusion.This issue affects Accounting for WooCommerce: from n/a through = 1.6.8...

7.5CVSS7.2AI score0.00502EPSS
Exploits0References1
CVE
CVE
added 2025/03/31 6:7 a.m.62 views

CVE-2025-30835

CVE-2025-30835 concerns the WordPress plugin Accounting for WooCommerce . The entry describes an Unauthenticated Local File Inclusion stemming from Improper Control of Filename for Include/Require statements in a PHP program (PHP Remote File Inclusion vulnerability). Affected: Accounting for WooC...

7.5CVSS7.2AI score0.00502EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/03/31 6:7 a.m.11 views

CVE-2025-30835 WordPress Accounting for WooCommerce plugin <= 1.6.8 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Bastien Ho Accounting for WooCommerce accounting-for-woocommerce allows PHP Local File Inclusion.This issue affects Accounting for WooCommerce: from n/a through = 1.6.8...

7.5CVSS7.4AI score0.00502EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/03/31 6:7 a.m.19 views

CVE-2025-30835 WordPress Accounting for WooCommerce plugin <= 1.6.8 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Bastien Ho Accounting for WooCommerce accounting-for-woocommerce allows PHP Local File Inclusion.This issue affects Accounting for WooCommerce: from n/a through = 1.6.8...

7.5CVSS0.00502EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/03/31 12:0 a.m.6 views

WordPress plugin Accounting for WooCommerce 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

7.5CVSS8.6AI score0.00502EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/03/28 6:6 p.m.12 views

CVE-2025-26929

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Bastien Ho Accounting for WooCommerce accounting-for-woocommerce allows Stored XSS.This issue affects Accounting for WooCommerce: from n/a through = 1.6.8...

5.9CVSS7.2AI score0.00347EPSS
Exploits0References1
Patchstack
Patchstack
added 2025/03/27 10:33 a.m.6 views

WordPress Accounting for WooCommerce plugin <= 1.6.8 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by Dimas Maulana in WordPress Plugin Accounting for WooCommerce versions = 1.6.8...

7.5CVSS7AI score0.00502EPSS
Exploits0Affected Software1
NVD
NVD
added 2025/03/26 3:16 p.m.6 views

CVE-2025-26929

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Bastien Ho Accounting for WooCommerce accounting-for-woocommerce allows Stored XSS.This issue affects Accounting for WooCommerce: from n/a through = 1.6.8...

5.9CVSS0.00347EPSS
Exploits0References1
CVE
CVE
added 2025/03/26 2:42 p.m.51 views

CVE-2025-26929

CVE-2025-26929 is a stored XSS vulnerability in the WordPress plugin Accounting for WooCommerce (

5.9CVSS7.2AI score0.00347EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/03/26 2:42 p.m.13 views

CVE-2025-26929 WordPress Accounting for WooCommerce plugin <= 1.6.8 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Bastien Ho Accounting for WooCommerce accounting-for-woocommerce allows Stored XSS.This issue affects Accounting for WooCommerce: from n/a through = 1.6.8...

5.9CVSS8.6AI score0.00347EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/03/26 2:42 p.m.17 views

CVE-2025-26929 WordPress Accounting for WooCommerce plugin <= 1.6.8 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Bastien Ho Accounting for WooCommerce accounting-for-woocommerce allows Stored XSS.This issue affects Accounting for WooCommerce: from n/a through = 1.6.8...

5.9CVSS0.00347EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/03/26 12:0 a.m.5 views

WordPress plugin Accounting for WooCommerce 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site scripting vulnerabilit...

5.9CVSS8.1AI score0.00347EPSS
Exploits0References1
Patchstack
Patchstack
added 2025/03/11 8:29 p.m.6 views

WordPress Accounting for WooCommerce plugin <= 1.6.8 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by b4orvn Patchstack Alliance in WordPress Plugin Accounting for WooCommerce versions = 1.6.8...

5.9CVSS7.8AI score0.00347EPSS
Exploits0Affected Software1
CNNVD
CNNVD
added 2024/12/05 12:0 a.m.3 views

WordPress plugin Accounting for WooCommerce 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site scripting vulnerabilit...

6.1CVSS7.5AI score0.00344EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2024/12/05 12:0 a.m.3 views

PT-2024-16910 · WordPress · Accounting For Woocommerce

Name of the Vulnerable Software and Affected Versions: Accounting for WooCommerce plugin for WordPress versions up to, and including, 1.6.6 Description: The issue is related to Reflected Cross-Site Scripting due to the use of add query arg without appropriate escaping on the URL. This allows...

6.1CVSS6.8AI score0.00344EPSS
Exploits0References8
Rows per page
Query Builder