12 matches found
EUVD-2025-11517
Malicious code in bioql PyPI...
CVE-2024-13925
The Klarna Checkout for WooCommerce WordPress plugin before 2.13.5 exposes an unauthenticated WooCommerce Ajax endpoint that allows an attacker to flood the log files with data at the maximum size allowed for a POST parameter per request. This can result in rapid consumption of disk space,...
WordPress Klarna Checkout for WooCommerce plugin < 2.13.5 - DoS via Excessive Logging vulnerability
DoS via Excessive Logging vulnerability discovered by WPscan in WordPress Plugin Klarna Checkout for WooCommerce versions 2.13.5...
CVE-2024-13925
The Klarna Checkout for WooCommerce WordPress plugin before 2.13.5 exposes an unauthenticated WooCommerce Ajax endpoint that allows an attacker to flood the log files with data at the maximum size allowed for a POST parameter per request. This can result in rapid consumption of disk space,...
CVE-2024-13925
CVE-2024-13925 : Klarna Checkout for WooCommerce (WordPress) before 2.13.5 exposes an unauthenticated WooCommerce Ajax endpoint that allows an attacker to flood log files by posting data at the maximum POST parameter size, causing rapid disk-space exhaustion. Affected: Klarna Checkout for WooComm...
CVE-2024-13925 Klarna Checkout for WooCommerce < 2.13.5 - DoS via Excessive Logging
The Klarna Checkout for WooCommerce WordPress plugin before 2.13.5 exposes an unauthenticated WooCommerce Ajax endpoint that allows an attacker to flood the log files with data at the maximum size allowed for a POST parameter per request. This can result in rapid consumption of disk space,...
CVE-2024-13925 Klarna Checkout for WooCommerce < 2.13.5 - DoS via Excessive Logging
The Klarna Checkout for WooCommerce WordPress plugin before 2.13.5 exposes an unauthenticated WooCommerce Ajax endpoint that allows an attacker to flood the log files with data at the maximum size allowed for a POST parameter per request. This can result in rapid consumption of disk space,...
WordPress plugin Klarna Checkout for WooCommerce 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security...
PT-2025-16936 · Klarna · Klarna Checkout For Woocommerce
Name of the Vulnerable Software and Affected Versions: Klarna Checkout for WooCommerce versions prior to 2.13.5 Description: The issue exposes an unauthenticated WooCommerce Ajax endpoint, allowing an attacker to flood log files with data, potentially consuming disk space rapidly. Recommendations...
Klarna Checkout for WooCommerce < 2.0.10 - Authenticated Arbitrary Plugin Deactivation, Activation and Installation
The plugin registers one AJAX action intended for installing addon plugins from WordPress.org. The callback method to this action does not have a capability nor nonce check. This enables any logged in user to post a request to the endpoint and install, activate or deactivate any plugin. Since the...
Klarna Checkout for WooCommerce < 2.0.10 - Authenticated Arbitrary Plugin Deactivation, Activation and Installation
The plugin registers one AJAX action intended for installing addon plugins from WordPress.org. The callback method to this action does not have a capability nor nonce check. This enables any logged in user to post a request to the endpoint and install, activate or deactivate any plugin. Since the...
Commerce Klarna Checkout - Moderately critical - Access bypass - SA-CONTRIB-2018-062
The Commerce Klarna Checkout module enables you to accept payments from the Klarna Checkout payment provider The module doesn't sufficiently validate the payment callback made by Klarna. An attacker could bypass the payment step...