CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

10 matches found

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2024-46920

Malicious code in bioql PyPI...

6.4CVSS6.6AI score0.00239EPSS

Exploits0References2

RedhatCVE•added 2025/05/23 8:30 a.m.•4 views

CVE-2024-5769

The MIMO Woocommerce Order Tracking plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on several functions in all versions up to, and including, 1.0.2. This makes it possible for authenticated attackers, with Subscriber-level access and abov...

4.3CVSS6.5AI score0.00394EPSS

Exploits0References1

Patchstack•added 2025/01/09 12:15 p.m.•3 views

WordPress MIMO Woocommerce Order Tracking plugin <= 1.0.2 - Missing Authorization to Limited Settings Update vulnerability

Missing Authorization to Limited Settings Update vulnerability discovered by Lucio Sá in WordPress Plugin MIMO Woocommerce Order Tracking versions = 1.0.2...

4.3CVSS7AI score0.00394EPSS

Exploits0References1Affected Software1

Cvelist•added 2025/01/09 11:10 a.m.•11 views

CVE-2024-5769 MIMO Woocommerce Order Tracking <= 1.0.2 - Missing Authorization to Limited Settings Update

4.3CVSS0.00394EPSS

Exploits0References5

Vulnrichment•added 2025/01/09 11:10 a.m.•3 views

CVE-2024-5769 MIMO Woocommerce Order Tracking <= 1.0.2 - Missing Authorization to Limited Settings Update

4.3CVSS4.3AI score0.00394EPSS

Exploits0References5

CVE•added 2025/01/09 11:10 a.m.•44 views

CVE-2024-5769

CVE-2024-5769 (MIMO Woocommerce Order Tracking, WordPress) The vulnerability stems from a missing capability check in multiple functions across all versions up to 1.0.2, allowing authenticated attackers with Subscriber-level access and above to add, update, or delete shipper tracking settings (da...

4.3CVSS4.3AI score0.00394EPSS

Exploits0References5

NVD•added 2024/06/19 4:15 a.m.•17 views

CVE-2024-5768

The MIMO Woocommerce Order Tracking plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'mimoupdateprovider' function in all versions up to, and including, 1.0.2. This makes it possible for authenticated attackers, with Subscriber-level...

6.4CVSS0.00239EPSS

Exploits0References2

CVE•added 2024/06/19 3:12 a.m.•51 views

CVE-2024-5768

CVE-2024-5768 affects MIMO Woocommerce Order Tracking (WordPress). The vulnerability is due to a missing capability check in mimo_update_provider, affecting all versions up to and including 1.0.2. Exploitation requires Subscriber+ authenticated access and can enable unauthorized modification of s...

6.4CVSS6.2AI score0.00239EPSS

Exploits0References2

Patchstack•added 2024/06/18 6:3 p.m.•4 views

WordPress MIMO Woocommerce Order Tracking plugin <= 1.0.2 - Authenticated Stored Cross-Site Scripting vulnerability

Authenticated Stored Cross-Site Scripting vulnerability discovered by Lucio Sá in WordPress Plugin MIMO Woocommerce Order Tracking versions = 1.0.2...

6.4CVSS5.7AI score0.00239EPSS

Exploits0References1Affected Software1

Patchstack•added 2024/06/18 12:0 a.m.•12 views

WordPress MIMO Woocommerce Order Tracking Plugin <= 1.0.2 is vulnerable to Cross Site Scripting (XSS)

Software MIMO Woocommerce Order Tracking Type Plugin Vulnerable versions = 1.0.2 Fixed in N/A OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-5768 Patch priority Medium CVSS severity Medium 6.5 Developer Claim ownership PSID 17c034ea51f0 Credits Luci...

6.4CVSS5.7AI score0.00239EPSS

Exploits0References2Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by