213 matches found
WordPress plugin Barcode Scanner with Inventory & Order Manager 信息泄露漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. An information disclosure vulnerability...
CVE-2024-34556 WordPress Barcode Scanner with Inventory & Order Manager plugin <= 1.5.4 - Sensitive Data Exposure via Exported File vulnerability
Insertion of Sensitive Information Into Sent Data vulnerability in Dmitry V. CEO of "UKR Solution" Barcode Scanner with Inventory & Order Manager barcode-scanner-lite-pos-to-manage-products-inventory-and-orders.This issue affects Barcode Scanner with Inventory & Order Manager: from n/a through =...
CVE-2024-34556 WordPress Barcode Scanner with Inventory & Order Manager plugin <= 1.5.4 - Sensitive Data Exposure via Exported File vulnerability
Insertion of Sensitive Information Into Sent Data vulnerability in Dmitry V. CEO of "UKR Solution" Barcode Scanner with Inventory & Order Manager barcode-scanner-lite-pos-to-manage-products-inventory-and-orders.This issue affects Barcode Scanner with Inventory & Order Manager: from n/a through =...
CVE-2024-34556
CVE-2024-34556 affects UkrSolution Barcode Scanner with Inventory & Order Manager. The connected Wordfence entry documents an unauthenticated information exposure vulnerability affecting the Barcode Scanner with Inventory & Order Manager: from n/a through 1.5.4. The CVE entry links to a vulnerabi...
CVE-2024-34557 WordPress Barcode Scanner with Inventory & Order Manager plugin <= 1.5.4 - Cross Site Request Forgery (CSRF) vulnerability
Cross-Site Request Forgery CSRF vulnerability in Dmitry V. CEO of "UKR Solution" Barcode Scanner with Inventory & Order Manager barcode-scanner-lite-pos-to-manage-products-inventory-and-orders.This issue affects Barcode Scanner with Inventory & Order Manager: from n/a through = 1.5.4...
CVE-2024-34557 WordPress Barcode Scanner with Inventory & Order Manager plugin <= 1.5.4 - Cross Site Request Forgery (CSRF) vulnerability
Cross-Site Request Forgery CSRF vulnerability in Dmitry V. CEO of "UKR Solution" Barcode Scanner with Inventory & Order Manager barcode-scanner-lite-pos-to-manage-products-inventory-and-orders.This issue affects Barcode Scanner with Inventory & Order Manager: from n/a through = 1.5.4...
CVE-2024-34557
CVE-2024-34557 : CSRF vulnerability in UkrSolution Barcode Scanner with Inventory & Order Manager (WordPress plugin). Affected: Barcode Scanner with Inventory & Order Manager: from n/a through 1.5.4. Description in connected sources confirms CSRF risk; exploitation could allow unauthorized action...
PT-2024-25971 · Unknown · Ukrsolution Barcode Scanner With Inventory & Order Manager
Name of the Vulnerable Software and Affected Versions: UkrSolution Barcode Scanner with Inventory & Order Manager versions 1.5.4 and earlier Description: The issue is related to the exposure of sensitive information to an unauthorized actor. Recommendations: For versions 1.5.4 and earlier, update...
PT-2024-25972 · Unknown · Ukrsolution Barcode Scanner With Inventory & Order Manager
Name of the Vulnerable Software and Affected Versions: UkrSolution Barcode Scanner with Inventory & Order Manager versions 1.5.4 and earlier Description: The issue is a Cross-Site Request Forgery CSRF vulnerability. This means an attacker can trick a user into performing unintended actions on a w...
WordPress Barcode Scanner with Inventory & Order Manager plugin <= 1.5.4 - Cross Site Request Forgery (CSRF) vulnerability
Cross Site Request Forgery CSRF vulnerability discovered by Dhabaleshwar Das Patchstack Alliance in WordPress Plugin Barcode Scanner with Inventory & Order Manager versions = 1.5.4...
WordPress Barcode Scanner with Inventory & Order Manager plugin <= 1.5.4 - Sensitive Data Exposure via Exported File vulnerability
Sensitive Data Exposure via Exported File vulnerability discovered by Dhabaleshwar Das Patchstack Alliance in WordPress Plugin Barcode Scanner with Inventory & Order Manager versions = 1.5.4...
WordPress Barcode Scanner with Inventory & Order Manager Plugin <= 1.5.4 is vulnerable to Cross Site Request Forgery (CSRF)
Software Barcode Scanner with Inventory & Order Manager Type Plugin Vulnerable versions = 1.5.4 Fixed in 1.5.5 OWASP Top 10 A1: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2024-34557 Patch priority Low CVSS severity Low 4.3 Developer DMitry PSID 2014d221439f Credi...
WordPress Barcode Scanner with Inventory & Order Manager Plugin <= 1.5.4 is vulnerable to Sensitive Data Exposure
Software Barcode Scanner with Inventory & Order Manager Type Plugin Vulnerable versions = 1.5.4 Fixed in 1.5.5 OWASP Top 10 A5: Security Misconfiguration Classification Sensitive Data Exposure CVE CVE-2024-34556 Patch priority Low CVSS severity Low 5.3 Developer DMitry PSID 3b6260611936 Credits...
CVE-2024-2661
The Barcode Scanner and Inventory manager. POS Point of Sale – scan barcodes & create orders with barcode reader. plugin for WordPress is vulnerable to blind SQL Injection via the ‘currentIds’ parameter in all versions up to, and including, 1.5.4 due to insufficient escaping on the user supplied...
CVE-2024-2661 Barcode Scanner with Inventory & Order Manager <= 1.5.4 - Authenticated (Subscriber+) SQL Injection
The Barcode Scanner and Inventory manager. POS Point of Sale – scan barcodes & create orders with barcode reader. plugin for WordPress is vulnerable to blind SQL Injection via the ‘currentIds’ parameter in all versions up to, and including, 1.5.4 due to insufficient escaping on the user supplied...
PT-2024-21430 · WordPress · Barcode Scanner/Inventory Manager
Name of the Vulnerable Software and Affected Versions: The Barcode Scanner and Inventory manager. POS Point of Sale – scan barcodes & create orders with barcode reader. plugin for WordPress versions up to, and including, 1.5.4 Description: The issue is related to blind SQL Injection via the...
WordPress plugin Barcode Scanner 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers with PHP and MySQL. WordPress plugin is an application plugin. A security vulnerability exists in...
Barcode Scanner with Inventory & Order Manager < 1.5.4 - Unauthenticated Privilege Escalation
Description The Barcode Scanner and Inventory manager. POS Point of Sale – scan barcodes & create orders with barcode reader. plugin for WordPress is vulnerable to privilege escalation in all versions up to, and including, 1.5.3. This is due to the plugin not properly restricting user meta values...
WordPress Barcode Scanner with Inventory & Order Manager plugin <= 1.5.4 - Authenticated (Subscriber+) SQL Injection vulnerability
Authenticated Subscriber+ SQL Injection vulnerability discovered by Peter Thaleikis in WordPress Plugin Barcode Scanner with Inventory & Order Manager versions = 1.5.4...
WordPress Barcode Scanner with Inventory & Order Manager Plugin <= 1.5.4 is vulnerable to SQL Injection
Software Barcode Scanner with Inventory & Order Manager Type Plugin Vulnerable versions = 1.5.4 Fixed in 1.5.5 OWASP Top 10 A1: Injection Classification SQL Injection CVE CVE-2024-2661 Patch priority High CVSS severity High 8.5 Developer DMitry PSID 7524c36d6a64 Credits Peter Thaleikis Required...