14 matches found
EUVD-2023-39874
Malicious code in bioql PyPI...
PT-2024-12519 · Woocommerce · Woocommerce One Page Checkout
Name of the Vulnerable Software and Affected Versions: WooCommerce One Page Checkout versions prior to 2.3.0 Description: The issue is related to an Improper Limitation of a Pathname to a Restricted Directory, also known as 'Path Traversal', which allows PHP Local File Inclusion. This could...
WordPress plugin WooCommerce One Page Checkout 路径遍历漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A path traversal...
CVE-2023-45384
KnowBand supercheckout 5.0.7 and 6.0.7 is vulnerable to Unrestricted Upload of File with Dangerous Type. In the module "Module One Page Checkout, Social Login & Mailchimp" supercheckout, a guest can upload files with extensions .php...
CVE-2023-45384
KnowBand supercheckout 5.0.7 and 6.0.7 is vulnerable to Unrestricted Upload of File with Dangerous Type. In the module "Module One Page Checkout, Social Login & Mailchimp" supercheckout, a guest can upload files with extensions .php...
CVE-2023-45384
KnowBand supercheckout 5.0.7 and 6.0.7 is vulnerable to Unrestricted Upload of File with Dangerous Type. In the module "Module One Page Checkout, Social Login & Mailchimp" supercheckout, a guest can upload files with extensions .php...
CVE-2023-45384
KnowBand supercheckout 5.0.7 and 6.0.7 is vulnerable to Unrestricted Upload of File with Dangerous Type. In the module "Module One Page Checkout, Social Login & Mailchimp" supercheckout, a guest can upload files with extensions .php...
CVE-2023-44024
SQL injection vulnerability in KnowBand Module One Page Checkout, Social Login & Mailchimp supercheckout v.8.0.3 and before allows a remote attacker to execute arbitrary code via a crafted request to the updateCheckoutBehaviour function in the supercheckout.php component...
CVE-2023-44024
SQL injection vulnerability in KnowBand Module One Page Checkout, Social Login & Mailchimp supercheckout v.8.0.3 and before allows a remote attacker to execute arbitrary code via a crafted request to the updateCheckoutBehaviour function in the supercheckout.php component...
PrestaShop SQL Injection Vulnerability
PrestaShop is an open source e-commerce solution from PrestaShop, Inc. in the United States. The solution offers multiple payment methods, SMS alerts and product image zoom. A security vulnerability exists in PrestaShop due to an SQL injection vulnerability in the supercheckout.php component of...
CVE-2023-44024
SQL injection vulnerability in KnowBand Module One Page Checkout, Social Login & Mailchimp supercheckout v.8.0.3 and before allows a remote attacker to execute arbitrary code via a crafted request to the updateCheckoutBehaviour function in the supercheckout.php component...
CVE-2023-44024
CVE-2023-44024 describes an SQL injection in the KnowBand Module One Page Checkout, Social Login & Mailchimp (supercheckout) up to version 8.0.3. The flaw is exploitable via a crafted request to the updateCheckoutBehaviour function in supercheckout.php, enabling remote code execution with no auth...
CVE-2023-44024
SQL injection vulnerability in KnowBand Module One Page Checkout, Social Login & Mailchimp supercheckout v.8.0.3 and before allows a remote attacker to execute arbitrary code via a crafted request to the updateCheckoutBehaviour function in the supercheckout.php component...
WordPress WooCommerce One Page Checkout Plugin <= 2.3.0 is vulnerable to Local File Inclusion
Software WooCommerce One Page Checkout Type Plugin Vulnerable versions = 2.3.0 Fixed in 2.4.0 OWASP Top 10 A1: Injection Classification Local File Inclusion CVE CVE-2023-35881 Patch priority Low CVSS severity Low 7.6 Developer Claim ownership PSID fd24b1111b74 Credits Rafie Muhammad Patchstack...