14 matches found
EUVD-2023-39874
Malicious code in bioql PyPI...
WordPress plugin WooCommerce One Page Checkout 路径遍历漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A path traversal...
PT-2024-12519 · Woocommerce · Woocommerce One Page Checkout
Name of the Vulnerable Software and Affected Versions: WooCommerce One Page Checkout versions prior to 2.3.0 Description: The issue is related to an Improper Limitation of a Pathname to a Restricted Directory, also known as 'Path Traversal', which allows PHP Local File Inclusion. This could...
CVE-2023-45384
KnowBand supercheckout 5.0.7 and 6.0.7 is vulnerable to Unrestricted Upload of File with Dangerous Type. In the module "Module One Page Checkout, Social Login & Mailchimp" supercheckout, a guest can upload files with extensions .php...
CVE-2023-45384
KnowBand supercheckout 5.0.7 and 6.0.7 is vulnerable to Unrestricted Upload of File with Dangerous Type. In the module "Module One Page Checkout, Social Login & Mailchimp" supercheckout, a guest can upload files with extensions .php...
CVE-2023-45384
KnowBand supercheckout 5.0.7 and 6.0.7 is vulnerable to Unrestricted Upload of File with Dangerous Type. In the module "Module One Page Checkout, Social Login & Mailchimp" supercheckout, a guest can upload files with extensions .php...
CVE-2023-45384
KnowBand supercheckout 5.0.7 and 6.0.7 is vulnerable to Unrestricted Upload of File with Dangerous Type. In the module "Module One Page Checkout, Social Login & Mailchimp" supercheckout, a guest can upload files with extensions .php...
CVE-2023-44024
SQL injection vulnerability in KnowBand Module One Page Checkout, Social Login & Mailchimp supercheckout v.8.0.3 and before allows a remote attacker to execute arbitrary code via a crafted request to the updateCheckoutBehaviour function in the supercheckout.php component...
CVE-2023-44024
SQL injection vulnerability in KnowBand Module One Page Checkout, Social Login & Mailchimp supercheckout v.8.0.3 and before allows a remote attacker to execute arbitrary code via a crafted request to the updateCheckoutBehaviour function in the supercheckout.php component...
CVE-2023-44024
SQL injection vulnerability in KnowBand Module One Page Checkout, Social Login & Mailchimp supercheckout v.8.0.3 and before allows a remote attacker to execute arbitrary code via a crafted request to the updateCheckoutBehaviour function in the supercheckout.php component...
PrestaShop SQL Injection Vulnerability
PrestaShop is an open source e-commerce solution from PrestaShop, Inc. in the United States. The solution offers multiple payment methods, SMS alerts and product image zoom. A security vulnerability exists in PrestaShop due to an SQL injection vulnerability in the supercheckout.php component of...
CVE-2023-44024
SQL injection vulnerability in KnowBand Module One Page Checkout, Social Login & Mailchimp supercheckout v.8.0.3 and before allows a remote attacker to execute arbitrary code via a crafted request to the updateCheckoutBehaviour function in the supercheckout.php component...
CVE-2023-44024
CVE-2023-44024 describes an SQL injection in the KnowBand Module One Page Checkout, Social Login & Mailchimp (supercheckout) up to version 8.0.3. The flaw is exploitable via a crafted request to the updateCheckoutBehaviour function in supercheckout.php, enabling remote code execution with no auth...
WordPress WooCommerce One Page Checkout Plugin <= 2.3.0 is vulnerable to Local File Inclusion
Software WooCommerce One Page Checkout Type Plugin Vulnerable versions = 2.3.0 Fixed in 2.4.0 OWASP Top 10 A1: Injection Classification Local File Inclusion CVE CVE-2023-35881 Patch priority Low CVSS severity Low 7.6 Developer Claim ownership PSID fd24b1111b74 Credits Rafie Muhammad Patchstack...