Lucene search
+L

195 matches found

CNNVD
CNNVD
added 2025/08/31 12:0 a.m.3 views

WordPress plugin Barcode Scanner with Inventory & Order Manager 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports personal blog sites on servers running PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability exists in...

7.1CVSS6.3AI score0.00161EPSS
Exploits0References3
CNVD
CNVD
added 2025/08/20 12:0 a.m.2 views

WordPress Plugin Barcode Scanner with Inventory & Order Manager Path Traversal Vulnerability

WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A path traversal vulnerability exists in the WordPress plugin Barcode Scanner with Inventory & Order...

4.9CVSS6.9AI score0.00403EPSS
Exploits0References1
NVD
NVD
added 2025/08/14 7:15 p.m.6 views

CVE-2025-54715

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Dmitry V. CEO of "UKR Solution" Barcode Scanner with Inventory & Order Manager barcode-scanner-lite-pos-to-manage-products-inventory-and-orders allows Path Traversal.This issue affects Barcode Scanner wi...

4.9CVSS0.00403EPSS
Exploits0References1
CVE
CVE
added 2025/08/14 6:21 p.m.20 views

CVE-2025-54715

CVE-2025-54715 concerns the WordPress plugin Barcode Scanner with Inventory & Order Manager (Barcode Scanner

4.9CVSS5.9AI score0.00403EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/08/14 6:21 p.m.3 views

CVE-2025-54715 WordPress Barcode Scanner with Inventory & Order Manager Plugin <= 1.9.0 - Arbitrary File Download Vulnerability

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Dmitry V. CEO of "UKR Solution" Barcode Scanner with Inventory & Order Manager allows Path Traversal. This issue affects Barcode Scanner with Inventory & Order Manager: from n/a through 1.9.0...

4.9CVSS7AI score0.00403EPSS
Exploits0References1
Patchstack
Patchstack
added 2025/08/14 2:52 p.m.9 views

WordPress Barcode Scanner with Inventory & Order Manager Plugin <= 1.9.0 - Arbitrary File Download Vulnerability

Arbitrary File Download Vulnerability discovered by domiee13 in WordPress Plugin Barcode Scanner with Inventory & Order Manager versions = 1.9.0...

4.9CVSS6.6AI score0.00403EPSS
Exploits0Affected Software1
Positive Technologies
Positive Technologies
added 2025/08/14 12:0 a.m.10 views

PT-2025-33383 · Unknown · Barcode Scanner With Inventory & Order Manager

Name of the Vulnerable Software and Affected Versions: Barcode Scanner with Inventory & Order Manager versions through 1.9.0 Description: The software contains a Path Traversal issue due to improper limitation of a pathname to a restricted directory. This allows attackers to traverse directory...

4.9CVSS6.4AI score0.00403EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/06/23 8:40 a.m.6 views

CVE-2025-49977

Cross-Site Request Forgery CSRF vulnerability in mylacventures WP Inventory Manager wp-inventory-manager allows Cross Site Request Forgery.This issue affects WP Inventory Manager: from n/a through = 2.3.4...

4.3CVSS5.7AI score0.00132EPSS
Exploits0References1
NVD
NVD
added 2025/06/20 3:15 p.m.8 views

CVE-2025-49977

Cross-Site Request Forgery CSRF vulnerability in WP Inventory WP Inventory Manager wp-inventory-manager allows Cross Site Request Forgery.This issue affects WP Inventory Manager: from n/a through = 2.3.4...

4.3CVSS0.00132EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2025/06/20 3:4 p.m.5 views

CVE-2025-49977

Cross-Site Request Forgery CSRF vulnerability in WP Inventory WP Inventory Manager wp-inventory-manager allows Cross Site Request Forgery.This issue affects WP Inventory Manager: from n/a through = 2.3.4...

4.3CVSS5.1AI score0.00132EPSS
Exploits0References3
CVE
CVE
added 2025/06/20 3:4 p.m.19 views

CVE-2025-49977

CVE-2025-49977: CSRF vulnerability in the WordPress WP Inventory Manager plugin (affected: ≤2.3.4). Root cause is CSRF allowing unauthorized actions. Exploitation details are not provided in the documents; patches exist as of 2024–2026, and the fix is included in a newer version. Affected product...

4.3CVSS5.1AI score0.00132EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/06/20 3:4 p.m.21 views

CVE-2025-49977 WordPress WP Inventory Manager plugin <= 2.3.4 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in WP Inventory WP Inventory Manager wp-inventory-manager allows Cross Site Request Forgery.This issue affects WP Inventory Manager: from n/a through = 2.3.4...

4.3CVSS0.00132EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/06/20 3:4 p.m.4 views

CVE-2025-49977 WordPress WP Inventory Manager plugin <= 2.3.4 - Cross Site Request Forgery (CSRF) Vulnerability

Cross-Site Request Forgery CSRF vulnerability in WP Inventory WP Inventory Manager allows Cross Site Request Forgery. This issue affects WP Inventory Manager: from n/a through 2.3.4...

4.3CVSS4.6AI score0.00132EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/06/20 12:0 a.m.4 views

WordPress plugin WP Inventory Manager 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site request forger...

4.3CVSS6.5AI score0.00132EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/06/20 12:0 a.m.5 views

PT-2025-26345 · WordPress · Wp Inventory Manager

Name of the Vulnerable Software and Affected Versions: WP Inventory Manager versions prior to 2.3.4 Description: A Cross-Site Request Forgery CSRF issue affects the WP Inventory Manager, allowing unauthorized actions to be performed on behalf of a user. Recommendations: For versions prior to 2.3....

4.3CVSS6.5AI score0.00132EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2025/05/23 9:47 a.m.12 views

CVE-2024-34557

Cross-Site Request Forgery CSRF vulnerability in Dmitry V. CEO of "UKR Solution" Barcode Scanner with Inventory & Order Manager barcode-scanner-lite-pos-to-manage-products-inventory-and-orders.This issue affects Barcode Scanner with Inventory & Order Manager: from n/a through = 1.5.4...

4.3CVSS5.9AI score0.0025EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 8:36 a.m.15 views

CVE-2024-34556

Insertion of Sensitive Information Into Sent Data vulnerability in Dmitry V. CEO of "UKR Solution" Barcode Scanner with Inventory & Order Manager barcode-scanner-lite-pos-to-manage-products-inventory-and-orders.This issue affects Barcode Scanner with Inventory & Order Manager: from n/a through =...

5.3CVSS5.9AI score0.00585EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 6:8 a.m.9 views

CVE-2023-52221

Unrestricted Upload of File with Dangerous Type vulnerability in UkrSolution Barcode Scanner and Inventory manager.This issue affects Barcode Scanner and Inventory manager: from n/a through 1.5.1...

10CVSS8.6AI score0.00631EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 5:20 a.m.6 views

CVE-2023-34002

Cross-Site Request Forgery CSRF vulnerability in WP Inventory Manager plugin = 2.1.0.13 versions...

8.8CVSS8.5AI score0.00303EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 3:9 a.m.10 views

CVE-2023-2123

The WP Inventory Manager WordPress plugin before 2.1.0.13 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting...

6.1CVSS6.7AI score0.01161EPSS
Exploits3References1
Rows per page
Query Builder