EUVD-2024-37590

Malicious code in bioql PyPI...

EUVD-2024-37067

Malicious code in bioql PyPI...

CVE-2024-38729

Cross-Site Request Forgery CSRF vulnerability in mbeelink MBE eShip mail-boxes-etc allows Cross Site Request Forgery.This issue affects MBE eShip: from n/a through = 2.1.2...

CVE-2024-37953

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in MBE Worldwide S.P.A. MBE eShip allows Reflected XSS.This issue affects MBE eShip: from n/a through 2.1.2...

CVE-2024-38729

Cross-Site Request Forgery CSRF vulnerability in mbeelink MBE eShip mail-boxes-etc allows Cross Site Request Forgery.This issue affects MBE eShip: from n/a through = 2.1.2...

CVE-2024-38729 WordPress MBE eShip plugin <= 2.1.2 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in mbeelink MBE eShip mail-boxes-etc allows Cross Site Request Forgery.This issue affects MBE eShip: from n/a through = 2.1.2...

CVE-2024-38729 WordPress MBE eShip plugin <= 2.1.2 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in MBE Worldwide S.p.A. MBE eShip allows Cross Site Request Forgery.This issue affects MBE eShip: from n/a through 2.1.2...

CVE-2024-38729

CVE-2024-38729 documents indicate a Cross-Site Request Forgery (CSRF) vulnerability in the MBE eShip WordPress plugin from MBE Worldwide S.p.A. The vulnerability affects MBE eShip versions ranging from n/a through 2.1.2. The available connected records confirm the CSRF nature but do not provide t...

WordPress plugin MBE eShip 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site reques...

CVE-2024-38742

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in MBE Worldwide S.P.A. MBE eShip allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects MBE eShip: from n/a through 2.1.2...

CVE-2024-38742 WordPress MBE eShip plugin <= 2.1.2 - Sensitive Data Exposure vulnerability

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in MBE Worldwide S.P.A. MBE eShip allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects MBE eShip: from n/a through 2.1.2...

CVE-2024-38742

CVE-2024-38742: WordPress plugin MBE eShip (MBE eShip) is affected (versions up to 2.1.2; affected range n/a–2.1.2) by an information disclosure vulnerability where Access Control Lists (ACLs) do not properly constrain functionality, potentially exposing sensitive data to unauthorized actors. CVS...

CVE-2024-38742 WordPress MBE eShip plugin <= 2.1.2 - Sensitive Data Exposure vulnerability

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in MBE Worldwide S.P.A. MBE eShip allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects MBE eShip: from n/a through 2.1.2...

WordPress plugin MBE eShip 信息泄露漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. An information...

CVE-2024-37953 WordPress MBE eShip plugin <= 2.1.2 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in MBE Worldwide S.P.A. MBE eShip allows Reflected XSS.This issue affects MBE eShip: from n/a through 2.1.2...

CVE-2024-37953

CVE-2024-37953 is a Reflected XSS in the MBE eShip WordPress plugin (MBE eShip) caused by improper neutralization of input during web page generation. Affected versions are up to and including 2.1.2. The vulnerability is publicly documented by Red Hat and other sources, which also advise upgradin...

CVE-2024-37953 WordPress MBE eShip plugin <= 2.1.2 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in MBE Worldwide S.P.A. MBE eShip allows Reflected XSS.This issue affects MBE eShip: from n/a through 2.1.2...

PT-2024-27858 · Mbe Eship · Mbe Eship

Name of the Vulnerable Software and Affected Versions: MBE eShip versions n/a through 2.1.2 Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting XSS. This allows for Reflected XSS. Recommendations: For versions n/a...

WordPress MBE eShip plugin <= 2.1.2 - Sensitive Data Exposure vulnerability

Sensitive Data Exposure vulnerability discovered by Joshua Chan Patchstack Alliance in WordPress Plugin MBE eShip versions = 2.1.2...

WordPress MBE eShip plugin <= 2.1.2 - Cross Site Request Forgery (CSRF) vulnerability

Cross Site Request Forgery CSRF vulnerability discovered by Joshua Chan Patchstack Alliance in WordPress Plugin MBE eShip versions = 2.1.2...