Lucene search
K

159 matches found

Positive Technologies
Positive Technologies
added 2024/04/07 12:0 a.m.4 views

PT-2024-23898 · Elex · Elex Woocommerce Dynamic Pricing/Discounts

Name of the Vulnerable Software and Affected Versions: ELEX WooCommerce Dynamic Pricing and Discounts versions through 2.1.2 Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting, allowing Reflected XSS. This enables...

7.1CVSS9.4AI score0.00334EPSS
Exploits0References3
Patchstack
Patchstack
added 2024/04/05 7:14 a.m.4 views

WordPress ELEX WooCommerce Dynamic Pricing and Discounts plugin <= 2.1.2 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Le Ngoc Anh Patchstack Alliance in WordPress Plugin ELEX WooCommerce Dynamic Pricing and Discounts versions = 2.1.2...

7.1CVSS6.1AI score0.00334EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2024/04/05 12:0 a.m.12 views

WordPress ELEX WooCommerce Dynamic Pricing and Discounts Plugin <= 2.1.2 is vulnerable to Cross Site Scripting (XSS)

Software ELEX WooCommerce Dynamic Pricing and Discounts Type Plugin Vulnerable versions = 2.1.2 Fixed in 2.1.3 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-31255 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 4d8f4c47ac76 Credits L...

7.1CVSS6.5AI score0.00334EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2024/01/17 4:15 p.m.4 views

CVE-2022-40203

Missing Authorization vulnerability in AlgolPlus Advanced Dynamic Pricing for WooCommerce.This issue affects Advanced Dynamic Pricing for WooCommerce: from n/a through 4.1.5...

8.8CVSS5.8AI score0.00405EPSS
Exploits0References1
NVD
NVD
added 2024/01/17 4:15 p.m.32 views

CVE-2022-40203

Missing Authorization vulnerability in AlgolPlus Advanced Dynamic Pricing for WooCommerce.This issue affects Advanced Dynamic Pricing for WooCommerce: from n/a through 4.1.5...

8.8CVSS7AI score0.00405EPSS
Exploits0References1
Prion
Prion
added 2024/01/17 4:15 p.m.20 views

Authorization

Missing Authorization vulnerability in AlgolPlus Advanced Dynamic Pricing for WooCommerce.This issue affects Advanced Dynamic Pricing for WooCommerce: from n/a through 4.1.5...

6.5CVSS7.2AI score0.00405EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2024/01/17 4:8 p.m.2 views

CVE-2022-40203 WordPress Advanced Dynamic Pricing for WooCommerce Plugin <= 4.1.5 is vulnerable to Broken Access Control

Missing Authorization vulnerability in AlgolPlus Advanced Dynamic Pricing for WooCommerce.This issue affects Advanced Dynamic Pricing for WooCommerce: from n/a through 4.1.5...

6.3CVSS7.2AI score0.00405EPSS
Exploits0References1
CVE
CVE
added 2024/01/17 4:8 p.m.44 views

CVE-2022-40203

CVE-2022-40203 affects the WordPress plugin AlgolPlus Advanced Dynamic Pricing for WooCommerce (versions

8.8CVSS8.5AI score0.00405EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2024/01/17 12:0 a.m.4 views

WordPress plugin Advanced Dynamic Pricing for WooCommerce security vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A security vulnerability exists in the...

8.8CVSS6.5AI score0.00405EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2024/01/17 12:0 a.m.8 views

PT-2024-11625 · Woocommerce · Algolplus Advanced Dynamic Pricing For Woocommerce

Name of the Vulnerable Software and Affected Versions: AlgolPlus Advanced Dynamic Pricing for WooCommerce versions through 4.1.5 Description: The issue is related to a Missing Authorization vulnerability. This vulnerability affects the Advanced Dynamic Pricing for WooCommerce plugin. There is no...

8.8CVSS8.7AI score0.00405EPSS
Exploits0References6
OSV
OSV
added 2024/01/08 10:15 p.m.4 views

CVE-2022-34344

Missing Authorization vulnerability in Rymera Web Co Wholesale Suite – WooCommerce Wholesale Prices, B2B, Catalog Mode, Order Form, Wholesale User Roles, Dynamic Pricing & More.This issue affects Wholesale Suite – WooCommerce Wholesale Prices, B2B, Catalog Mode, Order Form, Wholesale User Roles,...

8.8CVSS5.8AI score0.0046EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/01/08 9:13 p.m.37 views

CVE-2022-34344 WordPress Wholesale Suite Plugin <= 2.1.5 is vulnerable to Broken Access Control

Missing Authorization vulnerability in Rymera Web Co Wholesale Suite – WooCommerce Wholesale Prices, B2B, Catalog Mode, Order Form, Wholesale User Roles, Dynamic Pricing & More.This issue affects Wholesale Suite – WooCommerce Wholesale Prices, B2B, Catalog Mode, Order Form, Wholesale User Roles,...

5.4CVSS8.9AI score0.0046EPSS
Exploits0References1
OSV
OSV
added 2023/10/20 7:15 a.m.3 views

CVE-2021-4353

The WooCommerce Dynamic Pricing and Discounts plugin for WordPress is vulnerable to unauthenticated settings export in versions up to, and including, 2.4.1. This is due to missing authorization on the export function which makes makes it possible for unauthenticated attackers to export the plugin...

5.3CVSS5.8AI score0.00588EPSS
Exploits1References2
Prion
Prion
added 2023/10/20 7:15 a.m.22 views

Authorization

The WooCommerce Dynamic Pricing and Discounts plugin for WordPress is vulnerable to unauthenticated settings export in versions up to, and including, 2.4.1. This is due to missing authorization on the export function which makes makes it possible for unauthenticated attackers to export the plugin...

5CVSS5.2AI score0.00588EPSS
Exploits1References2Affected Software1
CVE
CVE
added 2023/10/20 6:35 a.m.35 views

CVE-2021-4353

The CVE-2021-4353 entry concerns the WordPress plugin WooCommerce Dynamic Pricing and Discounts . The vulnerability is an unauthenticated export of the plugin’s settings caused by missing authorization in the export() function, affecting versions up to and including 2.4.1. The available documents...

5.3CVSS5.2AI score0.00588EPSS
Exploits1References2Affected Software1
CNNVD
CNNVD
added 2023/10/20 12:0 a.m.4 views

WordPress Plugin WooCommerce Dynamic Pricing and Discounts Security Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. WordPress is a blogging platform developed in the PHP language that supports personal blogs on PHP and MySQL servers.WordPress plugin is an application...

5.3CVSS6.7AI score0.00588EPSS
Exploits1References3
NVD
NVD
added 2023/10/04 3:15 p.m.33 views

CVE-2023-40559

Cross-Site Request Forgery CSRF vulnerability in theDotstore Dynamic Pricing and Discount Rules for WooCommerce plugin = 2.4.0 versions...

8.8CVSS5.9AI score0.00214EPSS
Exploits0References1
Prion
Prion
added 2023/10/04 3:15 p.m.24 views

Cross site request forgery (csrf)

Cross-Site Request Forgery CSRF vulnerability in theDotstore Dynamic Pricing and Discount Rules for WooCommerce plugin = 2.4.0 versions...

6.8CVSS8.8AI score0.00214EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2023/10/04 2:11 p.m.38 views

CVE-2023-40559 WordPress WooCommerce Dynamic Pricing and Discount Rules Plugin <= 2.4.0 is vulnerable to Cross Site Request Forgery (CSRF)

Cross-Site Request Forgery CSRF vulnerability in theDotstore Dynamic Pricing and Discount Rules for WooCommerce plugin = 2.4.0 versions...

4.3CVSS9.1AI score0.00214EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/10/04 2:11 p.m.19 views

CVE-2023-40559 WordPress WooCommerce Dynamic Pricing and Discount Rules Plugin <= 2.4.0 is vulnerable to Cross Site Request Forgery (CSRF)

Cross-Site Request Forgery CSRF vulnerability in theDotstore Dynamic Pricing and Discount Rules for WooCommerce plugin = 2.4.0 versions...

4.3CVSS7.4AI score0.00214EPSS
Exploits0References1
Rows per page
Query Builder