9 matches found
EUVD-2024-50217
Malicious code in bioql PyPI...
CVE-2024-9927
The WooCommerce Order Proposal plugin for WordPress is vulnerable to privilege escalation via order proposal in all versions up to and including 2.0.5. This is due to the improper implementation of allowpaymentwithoutlogin function. This makes it possible for authenticated attackers, with Shop...
CVE-2024-9927
The WooCommerce Order Proposal plugin for WordPress is vulnerable to privilege escalation via order proposal in all versions up to and including 2.0.5. This is due to the improper implementation of allowpaymentwithoutlogin function. This makes it possible for authenticated attackers, with Shop...
CVE-2024-9927 WooCommerce Order Proposal <= 2.0.5 - Authenticated (Shop Manager+) Privilege Escalation via Order Proposal
The WooCommerce Order Proposal plugin for WordPress is vulnerable to privilege escalation via order proposal in all versions up to and including 2.0.5. This is due to the improper implementation of allowpaymentwithoutlogin function. This makes it possible for authenticated attackers, with Shop...
CVE-2024-9927 WooCommerce Order Proposal <= 2.0.5 - Authenticated (Shop Manager+) Privilege Escalation via Order Proposal
The WooCommerce Order Proposal plugin for WordPress is vulnerable to privilege escalation via order proposal in all versions up to and including 2.0.5. This is due to the improper implementation of allowpaymentwithoutlogin function. This makes it possible for authenticated attackers, with Shop...
WordPress plugin WooCommerce Order Proposal 授权问题漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. WordPress plugin WooCommerc...
PT-2024-39942 · WordPress · Woocommerce Order Proposal
Name of the Vulnerable Software and Affected Versions: WooCommerce Order Proposal plugin for WordPress versions up to and including 2.0.5 Description: The issue is due to the improper implementation of the allow payment without login function, making it possible for authenticated attackers with...
WordPress WooCommerce Order Proposal plugin <= 2.0.5 - Authenticated (Shop Manager+) Privilege Escalation via Order Proposal vulnerability
Authenticated Shop Manager+ Privilege Escalation via Order Proposal vulnerability discovered by theop in WordPress Plugin WooCommerce Order Proposal versions = 2.0.5...
WordPress WooCommerce Order Proposal Plugin <= 2.0.5 is vulnerable to Broken Authentication
Software WooCommerce Order Proposal Type Plugin Vulnerable versions = 2.0.5 Fixed in 2.0.6 OWASP Top 10 A7: Identification and Authentication Failures Classification Broken Authentication CVE CVE-2024-9927 Patch priority Low CVSS severity Low 7.2 Developer Claim ownership PSID d873b6f7fa89 Credit...