19 matches found
CVE-2026-40786
Missing Authorization vulnerability in Long Watch Studio MyRewards woorewards allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects MyRewards: from n/a through = 5.7.3...
EUVD-2026-22910
Missing Authorization vulnerability in Long Watch Studio MyRewards woorewards allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects MyRewards: from n/a through = 5.7.3...
CVE-2026-40786
Missing Authorization vulnerability in Long Watch Studio MyRewards woorewards allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects MyRewards: from n/a through = 5.7.3...
CVE-2026-40786 WordPress MyRewards plugin <= 5.7.3 - Broken Access Control vulnerability
Missing Authorization vulnerability in Long Watch Studio MyRewards woorewards allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects MyRewards: from n/a through = 5.7.3...
CVE-2026-40786
Missing Authorization vulnerability in Long Watch Studio MyRewards woorewards allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects MyRewards: from n/a through = 5.7.3...
PT-2026-33052
Name of the Vulnerable Software and Affected Versions MyRewards versions prior to 5.7.4 Description Incorrectly configured access control security levels lead to a missing authorization issue in the MyRewards plugin, which allows for the exploitation of security levels. Recommendations Update to ...
EUVD-2025-19956
Malicious code in bioql PyPI...
EUVD-2024-30475
Malicious code in bioql PyPI...
CVE-2025-24757
Missing Authorization vulnerability in AndonDesign uDesign udesign.This issue affects uDesign: from n/a through = 4.11.2...
CVE-2025-24757
Missing Authorization vulnerability in AndonDesign uDesign udesign.This issue affects uDesign: from n/a through = 4.11.2...
CVE-2025-24757
CVE-2025-24757 – Stored XSS in Long Watch Studio MyRewards . The vulnerability is an improper input neutralization during web page generation, enabling stored cross-site scripting in the MyRewards widget/plugin for WordPress. Affected versions are listed as n/a through 5.4.13.1. Public sources co...
PT-2025-27871 · Long Watch Studio · Myrewards
Name of the Vulnerable Software and Affected Versions: Long Watch Studio MyRewards versions n/d through 5.4.13.1 Description: The issue is related to improper neutralization of input during web page generation, also known as 'Cross-site Scripting', which allows stored XSS. Recommendations: For...
CVE-2024-32688
Missing Authorization vulnerability in Long Watch Studio MyRewards.This issue affects MyRewards: from n/a through 5.3.0...
CVE-2024-32688
Missing Authorization vulnerability in Long Watch Studio MyRewards.This issue affects MyRewards: from n/a through 5.3.0...
CVE-2024-32688
CVE-2024-32688 is a Missing Authorization vulnerability in the MyRewards plugin for WooCommerce (MyRewards). Affected range: up to version 5.3.0. The issue is documented by Red Hat and Wordfence, with Patch/Patched status indicating a fix has been released. CVSS 3.1 score is 6.5 (Network, Low com...
CVE-2024-32688 WordPress MyRewards plugin <= 5.3.0 - Broken Access Control vulnerability
Missing Authorization vulnerability in Long Watch Studio MyRewards.This issue affects MyRewards: from n/a through 5.3.0...
PT-2024-24774 · Long Watch Studio · Myrewards
Name of the Vulnerable Software and Affected Versions: Long Watch Studio MyRewards versions n/a through 5.3.0 Description: The issue is related to a Missing Authorization vulnerability. This means that there is a lack of proper authorization checks, potentially allowing unauthorized access to...
Server side request forgery (ssrf)
Server-Side Request Forgery SSRF vulnerability in Montonio Montonio for WooCommerce, Wpopal Wpopal Core Features, AMO for WP – Membership Management ArcStone wp-amo, Long Watch Studio WooVirtualWallet – A virtual wallet for WooCommerce, Long Watch Studio WooVIP – Membership plugin for WordPress a...
CVE-2022-40700 Server Side Request Forgery (SSRF) vulnerability affecting multiple WordPress plugins
Server-Side Request Forgery SSRF vulnerability in Montonio Montonio for WooCommerce, Wpopal Wpopal Core Features, AMO for WP – Membership Management ArcStone wp-amo, Long Watch Studio WooVirtualWallet – A virtual wallet for WooCommerce, Long Watch Studio WooVIP – Membership plugin for WordPress a...