Lucene search
K

213 matches found

CNNVD
CNNVD
added 2024/05/14 12:0 a.m.22 views

WordPress plugin Barcode Scanner with Inventory & Order Manager 信息泄露漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. An information disclosure vulnerability...

5.3CVSS6AI score0.00585EPSS
Exploits0References3
Cvelist
Cvelist
added 2024/05/09 12:9 p.m.40 views

CVE-2024-34556 WordPress Barcode Scanner with Inventory & Order Manager plugin <= 1.5.4 - Sensitive Data Exposure via Exported File vulnerability

Insertion of Sensitive Information Into Sent Data vulnerability in Dmitry V. CEO of "UKR Solution" Barcode Scanner with Inventory & Order Manager barcode-scanner-lite-pos-to-manage-products-inventory-and-orders.This issue affects Barcode Scanner with Inventory & Order Manager: from n/a through =...

5.3CVSS5.9AI score0.00585EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/05/09 12:9 p.m.13 views

CVE-2024-34556 WordPress Barcode Scanner with Inventory & Order Manager plugin <= 1.5.4 - Sensitive Data Exposure via Exported File vulnerability

Insertion of Sensitive Information Into Sent Data vulnerability in Dmitry V. CEO of "UKR Solution" Barcode Scanner with Inventory & Order Manager barcode-scanner-lite-pos-to-manage-products-inventory-and-orders.This issue affects Barcode Scanner with Inventory & Order Manager: from n/a through =...

5.3CVSS5.2AI score0.00585EPSS
Exploits0References1
CVE
CVE
added 2024/05/09 12:9 p.m.33 views

CVE-2024-34556

CVE-2024-34556 affects UkrSolution Barcode Scanner with Inventory & Order Manager. The connected Wordfence entry documents an unauthenticated information exposure vulnerability affecting the Barcode Scanner with Inventory & Order Manager: from n/a through 1.5.4. The CVE entry links to a vulnerabi...

5.3CVSS5.9AI score0.00585EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/05/09 11:40 a.m.10 views

CVE-2024-34557 WordPress Barcode Scanner with Inventory & Order Manager plugin <= 1.5.4 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in Dmitry V. CEO of "UKR Solution" Barcode Scanner with Inventory & Order Manager barcode-scanner-lite-pos-to-manage-products-inventory-and-orders.This issue affects Barcode Scanner with Inventory & Order Manager: from n/a through = 1.5.4...

4.3CVSS5.2AI score0.0025EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/05/09 11:40 a.m.35 views

CVE-2024-34557 WordPress Barcode Scanner with Inventory & Order Manager plugin <= 1.5.4 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in Dmitry V. CEO of "UKR Solution" Barcode Scanner with Inventory & Order Manager barcode-scanner-lite-pos-to-manage-products-inventory-and-orders.This issue affects Barcode Scanner with Inventory & Order Manager: from n/a through = 1.5.4...

4.3CVSS5.3AI score0.0025EPSS
Exploits0References1
CVE
CVE
added 2024/05/09 11:40 a.m.36 views

CVE-2024-34557

CVE-2024-34557 : CSRF vulnerability in UkrSolution Barcode Scanner with Inventory & Order Manager (WordPress plugin). Affected: Barcode Scanner with Inventory & Order Manager: from n/a through 1.5.4. Description in connected sources confirms CSRF risk; exploitation could allow unauthorized action...

4.3CVSS5.9AI score0.0025EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/05/09 12:0 a.m.5 views

PT-2024-25971 · Unknown · Ukrsolution Barcode Scanner With Inventory & Order Manager

Name of the Vulnerable Software and Affected Versions: UkrSolution Barcode Scanner with Inventory & Order Manager versions 1.5.4 and earlier Description: The issue is related to the exposure of sensitive information to an unauthorized actor. Recommendations: For versions 1.5.4 and earlier, update...

5.3CVSS6.8AI score0.00585EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/05/09 12:0 a.m.11 views

PT-2024-25972 · Unknown · Ukrsolution Barcode Scanner With Inventory & Order Manager

Name of the Vulnerable Software and Affected Versions: UkrSolution Barcode Scanner with Inventory & Order Manager versions 1.5.4 and earlier Description: The issue is a Cross-Site Request Forgery CSRF vulnerability. This means an attacker can trick a user into performing unintended actions on a w...

4.3CVSS6.8AI score0.0025EPSS
Exploits0References2
Patchstack
Patchstack
added 2024/05/07 9:34 a.m.7 views

WordPress Barcode Scanner with Inventory & Order Manager plugin <= 1.5.4 - Cross Site Request Forgery (CSRF) vulnerability

Cross Site Request Forgery CSRF vulnerability discovered by Dhabaleshwar Das Patchstack Alliance in WordPress Plugin Barcode Scanner with Inventory & Order Manager versions = 1.5.4...

4.3CVSS7AI score0.0025EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2024/05/07 9:33 a.m.3 views

WordPress Barcode Scanner with Inventory & Order Manager plugin <= 1.5.4 - Sensitive Data Exposure via Exported File vulnerability

Sensitive Data Exposure via Exported File vulnerability discovered by Dhabaleshwar Das Patchstack Alliance in WordPress Plugin Barcode Scanner with Inventory & Order Manager versions = 1.5.4...

5.3CVSS7AI score0.00585EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2024/05/07 12:0 a.m.10 views

WordPress Barcode Scanner with Inventory & Order Manager Plugin <= 1.5.4 is vulnerable to Cross Site Request Forgery (CSRF)

Software Barcode Scanner with Inventory & Order Manager Type Plugin Vulnerable versions = 1.5.4 Fixed in 1.5.5 OWASP Top 10 A1: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2024-34557 Patch priority Low CVSS severity Low 4.3 Developer DMitry PSID 2014d221439f Credi...

4.3CVSS6.6AI score0.0025EPSS
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2024/05/07 12:0 a.m.15 views

WordPress Barcode Scanner with Inventory & Order Manager Plugin <= 1.5.4 is vulnerable to Sensitive Data Exposure

Software Barcode Scanner with Inventory & Order Manager Type Plugin Vulnerable versions = 1.5.4 Fixed in 1.5.5 OWASP Top 10 A5: Security Misconfiguration Classification Sensitive Data Exposure CVE CVE-2024-34556 Patch priority Low CVSS severity Low 5.3 Developer DMitry PSID 3b6260611936 Credits...

5.3CVSS6.5AI score0.00585EPSS
Exploits0References2Affected Software1
NVD
NVD
added 2024/05/02 5:15 p.m.18 views

CVE-2024-2661

The Barcode Scanner and Inventory manager. POS Point of Sale – scan barcodes & create orders with barcode reader. plugin for WordPress is vulnerable to blind SQL Injection via the ‘currentIds’ parameter in all versions up to, and including, 1.5.4 due to insufficient escaping on the user supplied...

8.8CVSS8.8AI score0.00613EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2024/05/02 4:52 p.m.15 views

CVE-2024-2661 Barcode Scanner with Inventory & Order Manager <= 1.5.4 - Authenticated (Subscriber+) SQL Injection

The Barcode Scanner and Inventory manager. POS Point of Sale – scan barcodes & create orders with barcode reader. plugin for WordPress is vulnerable to blind SQL Injection via the ‘currentIds’ parameter in all versions up to, and including, 1.5.4 due to insufficient escaping on the user supplied...

8.8CVSS5.9AI score0.00613EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2024/05/02 12:0 a.m.3 views

PT-2024-21430 · WordPress · Barcode Scanner/Inventory Manager

Name of the Vulnerable Software and Affected Versions: The Barcode Scanner and Inventory manager. POS Point of Sale – scan barcodes & create orders with barcode reader. plugin for WordPress versions up to, and including, 1.5.4 Description: The issue is related to blind SQL Injection via the...

8.8CVSS7.4AI score0.00613EPSS
Exploits0References6
CNNVD
CNNVD
added 2024/05/02 12:0 a.m.3 views

WordPress plugin Barcode Scanner 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers with PHP and MySQL. WordPress plugin is an application plugin. A security vulnerability exists in...

8.8CVSS7.6AI score0.00613EPSS
Exploits0References4
WPVulnDB
WPVulnDB
added 2024/05/01 12:0 a.m.22 views

Barcode Scanner with Inventory & Order Manager < 1.5.4 - Unauthenticated Privilege Escalation

Description The Barcode Scanner and Inventory manager. POS Point of Sale – scan barcodes & create orders with barcode reader. plugin for WordPress is vulnerable to privilege escalation in all versions up to, and including, 1.5.3. This is due to the plugin not properly restricting user meta values...

9.8CVSS7.4AI score0.00501EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2024/04/30 12:2 p.m.5 views

WordPress Barcode Scanner with Inventory & Order Manager plugin <= 1.5.4 - Authenticated (Subscriber+) SQL Injection vulnerability

Authenticated Subscriber+ SQL Injection vulnerability discovered by Peter Thaleikis in WordPress Plugin Barcode Scanner with Inventory & Order Manager versions = 1.5.4...

8.8CVSS8.1AI score0.00613EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2024/04/30 12:0 a.m.9 views

WordPress Barcode Scanner with Inventory & Order Manager Plugin <= 1.5.4 is vulnerable to SQL Injection

Software Barcode Scanner with Inventory & Order Manager Type Plugin Vulnerable versions = 1.5.4 Fixed in 1.5.5 OWASP Top 10 A1: Injection Classification SQL Injection CVE CVE-2024-2661 Patch priority High CVSS severity High 8.5 Developer DMitry PSID 7524c36d6a64 Credits Peter Thaleikis Required...

8.8CVSS6.8AI score0.00613EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder