CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

7 matches found

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2025-30956

Malicious code in bioql PyPI...

9.8CVSS6.5AI score0.00217EPSS

Exploits0References3

Patchstack•added 2025/09/24 7:8 a.m.•3 views

WordPress MultiLoca - WooCommerce Multi Locations Inventory Management plugin <= 4.2.8 - Missing Authorization to Unauthenticated Arbitrary Options Update via 'wcmlim_settings_ajax_handler' vulnerability

WordPress MultiLoca - WooCommerce Multi Locations Inventory Management plugin = 4.2.8 - Missing Authorization to Unauthenticated Arbitrary Options Update via 'wcmlimsettingsajaxhandler' vulnerability discovered by Thái An in WordPress Plugin MultiLoca versions = 4.2.8...

9.8CVSS6.8AI score0.00217EPSS

Exploits0References1Affected Software1

RedhatCVE•added 2025/05/23 7:34 a.m.•4 views

CVE-2024-13341

The MultiLoca - WooCommerce Multi Locations Inventory Management plugin for WordPress is vulnerable to SQL Injection via the 'data-id' parameter in all versions up to, and including, 4.1.11 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the...

6.5CVSS7.3AI score0.00066EPSS

Exploits0References1

OSV•added 2025/02/01 7:15 a.m.•0 views

CVE-2024-13341

6.5CVSS5.8AI score

Exploits0References2

CVE•added 2025/02/01 6:41 a.m.•44 views

CVE-2024-13341

CVE-2024-13341 affects the WordPress plugin “MultiLoca - WooCommerce Multi Locations Inventory Management” (WordPress/WooCommerce). The vulnerability is a SQL Injection via the data-id parameter in all versions up to and including 4.1.11, caused by insufficient escaping and unsafe handling of the...

6.5CVSS6.5AI score0.00066EPSS

Exploits0References2Affected Software1