242 matches found
CVE-2025-22287
Missing Authorization vulnerability in enituretechnology LTL Freight Quotes – FreightQuote Edition ltl-freight-quotes-freightquote-edition allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects LTL Freight Quotes – FreightQuote Edition: from n/a through = 2.3.1...
CVE-2025-22287
Missing Authorization vulnerability in enituretechnology LTL Freight Quotes – FreightQuote Edition ltl-freight-quotes-freightquote-edition allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects LTL Freight Quotes – FreightQuote Edition: from n/a through = 2.3.1...
CVE-2025-22287
CVE-2025-22287 is a Missing Authorization / Broken Access Control vulnerability in the WordPress plugin LTL Freight Quotes – FreightQuote Edition (versions
PT-2025-22053 · Enituretechnology · Enituretechnology Ltl Freight Quotes – Freightquote Edition
Name of the Vulnerable Software and Affected Versions: Eniture Technology LTL Freight Quotes – FreightQuote Edition versions 2.3.11 and earlier Description: The issue affects the Eniture Technology LTL Freight Quotes – FreightQuote Edition due to a Missing Authorization vulnerability, allowing...
CVE-2024-13474
The LTL Freight Quotes – Purolator Edition plugin for WordPress is vulnerable to SQL Injection via the 'dropshipeditid' and 'editid' parameters in all versions up to, and including, 2.2.3 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existin...
CVE-2024-13474 LTL Freight Quotes – Purolator Edition <= 2.2.3 - Unauthenticated SQL Injection
The LTL Freight Quotes – Purolator Edition plugin for WordPress is vulnerable to SQL Injection via the 'dropshipeditid' and 'editid' parameters in all versions up to, and including, 2.2.3 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existin...
CVE-2024-13474
CVE-2024-13474 affects the WordPress plugin “LTL Freight Quotes – Purolator Edition” and is an SQL Injection via dropship_edit_id and edit_id. All versions up to and including 2.2.3 are affected due to insufficient escaping and lack of prepared statements, allowing unauthenticated attackers to ap...
PT-2025-7355 · WordPress · Ltl Freight Quotes – Purolator Edition
Name of the Vulnerable Software and Affected Versions: LTL Freight Quotes – Purolator Edition plugin for WordPress versions up to, and including, 2.2.3 Description: The issue is related to SQL Injection via the dropship edit id and edit id parameters due to insufficient escaping on the user...
WordPress plugin LTL Freight Quotes – Purolator Edition SQL注入漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A SQL injection vulnerabili...
WordPress LTL Freight Quotes – Purolator Edition plugin <= 2.2.3 - Unauthenticated SQL Injection vulnerability
Unauthenticated SQL Injection vulnerability discovered by Colin Xu in WordPress Plugin LTL Freight Quotes – Purolator Edition versions = 2.2.3...
CVE-2024-13478
The LTL Freight Quotes – TForce Edition plugin for WordPress is vulnerable to SQL Injection via the 'dropshipeditid' and 'editid' parameters in all versions up to, and including, 3.6.4 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing S...
CVE-2024-13483
The LTL Freight Quotes – SAIA Edition plugin for WordPress is vulnerable to SQL Injection via the 'editid' and 'dropshipeditid' parameters in all versions up to, and including, 2.2.10 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQ...
CVE-2024-13489
The LTL Freight Quotes – Old Dominion Edition plugin for WordPress is vulnerable to SQL Injection via the 'editid' and 'dropshipeditid' parameters in all versions up to, and including, 4.2.10 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the...
Exploit for SQL Injection in Eniture Ltl_Freight_Quotes
CVE-2024-13479 LTL Freight Quotes – SEFL Edition = 5.6 AND err...
Exploit for SQL Injection in Eniture Ltl_Freight_Quotes
CVE-2024-13483 LTL Freight Quotes – SAIA Edition = 5.6 AND err...
CVE-2025-1483
The LTL Freight Quotes – GlobalTranz Edition plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the engtzwdsavedropship AJAX endpoint in all versions up to, and including, 2.3.12. This makes it possible for unauthenticated attackers to...
CVE-2025-1483 LTL Freight Quotes – GlobalTranz Edition <= 2.3.12 - Missing Authorization to Unauthenticated Settings Update
The LTL Freight Quotes – GlobalTranz Edition plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the engtzwdsavedropship AJAX endpoint in all versions up to, and including, 2.3.12. This makes it possible for unauthenticated attackers to...
CVE-2025-1483
CVE-2025-1483 concerns the WordPress plugin “LTL Freight Quotes – GlobalTranz Edition” (
CVE-2025-1483 LTL Freight Quotes – GlobalTranz Edition <= 2.3.12 - Missing Authorization to Unauthenticated Settings Update
The LTL Freight Quotes – GlobalTranz Edition plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the engtzwdsavedropship AJAX endpoint in all versions up to, and including, 2.3.12. This makes it possible for unauthenticated attackers to...
LTL Freight Quotes – TForce Edition 3.6.4 SQL Injection
LTL Freight Quotes – TForce Edition versions 3.6.4 and below suffer from an unauthenticated remote SQL injection vulnerability. CVE-2024-13478 LTL Freight Quotes – TForce Edition = 3.6.4 - Unauthenticated SQL Injection Description The LTL Freight Quotes – TForce Edition plugin for WordPress is...