14 matches found
EUVD-2025-11671
Malicious code in bioql PyPI...
CVE-2024-11842
The DN Shipping by Weight for WooCommerce WordPress plugin before 1.2 does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin change them via a CSRF attack...
CVE-2025-32535
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in digireturn DN Shipping by Weight for WooCommerce dn-shipping-by-weight allows Reflected XSS.This issue affects DN Shipping by Weight for WooCommerce: from n/a through = 1.2...
CVE-2025-32535
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in digireturn DN Shipping by Weight for WooCommerce dn-shipping-by-weight allows Reflected XSS.This issue affects DN Shipping by Weight for WooCommerce: from n/a through = 1.2...
CVE-2025-32535
CVE-2025-32535 describes a Reflected XSS in the WordPress plugin Shipping by Weight for WooCommerce (DN Shipping by Weight). Affected versions include up to 1.2; attack vector is network-based with user interaction (REFLECTED XSS). The CVE’s base metrics indicate a HIGH impact on confidentiality,...
CVE-2025-32535 WordPress DN Shipping by Weight for WooCommerce Plugin <= 1.2 - Reflected Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in digireturn DN Shipping by Weight for WooCommerce allows Reflected XSS. This issue affects DN Shipping by Weight for WooCommerce: from n/a through 1.2...
PT-2025-17106 · Woocommerce · Dn Shipping By Weight For Woocommerce
Name of the Vulnerable Software and Affected Versions: DN Shipping by Weight for WooCommerce versions 1.2 and earlier Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting, which allows Reflected XSS. This means an...
WordPress DN Shipping by Weight for WooCommerce plugin < 1.2 - Settings Update via CSRF vulnerability
Settings Update via CSRF vulnerability discovered by Bob Matyas in WordPress Plugin DN Shipping by Weight for WooCommerce versions 1.2...
CVE-2024-11842
The DN Shipping by Weight for WooCommerce WordPress plugin before 1.2 does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin change them via a CSRF attack...
CVE-2024-11842 DN Shipping by Weight for WooCommerce < 1.2 - Settings Update via CSRF
The DN Shipping by Weight for WooCommerce WordPress plugin before 1.2 does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin change them via a CSRF attack...
CVE-2024-11842
The CVE-2024-11842 entry concerns the DN Shipping by Weight for WooCommerce WordPress plugin prior to version 1.2. The root cause is a missing CSRF check when updating plugin settings, enabling a CSRF attack to modify settings by a logged-in administrator. Impact described: settings changes could...
CVE-2024-11842 DN Shipping by Weight for WooCommerce < 1.2 - Settings Update via CSRF
The DN Shipping by Weight for WooCommerce WordPress plugin before 1.2 does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin change them via a CSRF attack...
PT-2024-17290 · WordPress · Dn Shipping By Weight
Name of the Vulnerable Software and Affected Versions: DN Shipping by Weight for WooCommerce WordPress plugin version 1.2 and earlier Description: The issue concerns the lack of CSRF verification when updating the plugin's settings. This could allow attackers to make a logged-in administrator...
WordPress plugin DN Shipping by Weight for WooCommerce 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability exists in the...