Lucene search
K

117 matches found

CVE
CVE
added 2024/05/02 4:51 p.m.59 views

CVE-2024-3047

Technical details (affected product/version, root cause, impact, remediation) are not provided in the Connected documents. Monitor for updates from vendors or official advisories to obtain concrete details and mitigation.

7.2CVSS6.7AI score0.00403EPSS
Exploits0References2Affected Software1
CNNVD
CNNVD
added 2024/05/02 12:0 a.m.3 views

WordPress plugin PDF Invoices & Packing Slips for WooCommerce 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports PHP and MySQL servers to set up a personal blog site. WordPress plugin is an application plug-in. A security vulnerability exists i...

7.2CVSS6.6AI score0.00403EPSS
Exploits0References3
CNNVD
CNNVD
added 2024/05/02 12:0 a.m.4 views

WordPress plugin PDF Invoices & Packing Slips for WooCommerce 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports PHP and MySQL servers to set up a personal blog site. WordPress plugin is an application plug-in. WordPress plugin PDF Invoices &...

7.2CVSS5.9AI score0.0057EPSS
Exploits0References4
Patchstack
Patchstack
added 2024/04/25 2:13 a.m.4 views

WordPress PDF Invoices & Packing Slips for WooCommerce plugin <= 3.8.0 - Unauthenticated Stored Cross-Site Scripting vulnerability

Unauthenticated Stored Cross-Site Scripting vulnerability discovered by Tim Coen in WordPress Plugin WooCommerce PDF Invoices & Packing Slips versions = 3.8.0...

7.2CVSS5.8AI score0.0057EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2024/04/25 12:0 a.m.15 views

WordPress WooCommerce PDF Invoices & Packing Slips Plugin <= 3.8.0 is vulnerable to Cross Site Scripting (XSS)

Software WooCommerce PDF Invoices & Packing Slips Type Plugin Vulnerable versions = 3.8.0 Fixed in 3.8.1 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-3045 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID d235421a1171...

7.2CVSS5.6AI score0.0057EPSS
Exploits0References3Affected Software1
Patchstack
Patchstack
added 2024/04/08 5:0 a.m.7 views

WordPress WooCommerce PDF Invoices, Packing Slips, Delivery Notes and Shipping Labels plugin <= 4.4.2 - Missing Authorization to Unauthenticated Settings Reset vulnerability

Missing Authorization to Unauthenticated Settings Reset vulnerability discovered by Krzysztof Zając in WordPress Plugin WooCommerce PDF Invoices, Packing Slips, Delivery Notes and Shipping Labels versions = 4.4.2...

5.3CVSS7AI score0.00444EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2024/04/06 3:24 a.m.12 views

CVE-2024-3216 WooCommerce PDF Invoices, Packing Slips, Delivery Notes and Shipping Labels <= 4.4.2 - Missing Authorization to Unauthenticated Settings Reset

The WooCommerce PDF Invoices, Packing Slips, Delivery Notes and Shipping Labels plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the wtpklistresetsettings function in all versions up to, and including, 4.4.2. This makes it possible for...

5.3CVSS7.2AI score0.00444EPSS
Exploits0References2
OSV
OSV
added 2024/03/28 5:15 a.m.5 views

CVE-2024-30230

Deserialization of Untrusted Data vulnerability in Acowebs PDF Invoices and Packing Slips For WooCommerce.This issue affects PDF Invoices and Packing Slips For WooCommerce: from n/a through 1.3.7...

8.8CVSS5.8AI score0.00551EPSS
Exploits0References1
NVD
NVD
added 2024/03/28 5:15 a.m.16 views

CVE-2024-30230

Deserialization of Untrusted Data vulnerability in Acowebs PDF Invoices and Packing Slips For WooCommerce.This issue affects PDF Invoices and Packing Slips For WooCommerce: from n/a through 1.3.7...

8.8CVSS8.3AI score0.00551EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/03/28 4:47 a.m.10 views

CVE-2024-30230 WordPress PDF Invoices and Packing Slips For WooCommerce plugin <= 1.3.7 - PHP Object Injection vulnerability

Deserialization of Untrusted Data vulnerability in Acowebs PDF Invoices and Packing Slips For WooCommerce.This issue affects PDF Invoices and Packing Slips For WooCommerce: from n/a through 1.3.7...

8.2CVSS8.3AI score0.00551EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/03/28 12:0 a.m.5 views

WordPress Plugin PDF Invoices and Packing Slips For WooCommerce 代码问题漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports PHP and MySQL servers to set up a personal blog site. WordPress plugin is an application plugin. WordPress Plugin PDF Invoices and...

8.8CVSS6.9AI score0.00551EPSS
Exploits0References2
OSV
OSV
added 2024/03/27 6:15 a.m.3 views

CVE-2024-22288

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in WebToffee WooCommerce PDF Invoices, Packing Slips, Delivery Notes and Shipping Labels allows Reflected XSS.This issue affects WooCommerce PDF Invoices, Packing Slips, Delivery Notes and Shipping...

6.1CVSS7.3AI score0.00397EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/03/27 12:0 a.m.4 views

WordPress Plugin WooCommerce PDF Invoices, Packing Slips, Delivery Notes and Shipping Labels 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports PHP and MySQL servers to set up a personal blog site. WordPress plugin is an application plugin. WordPress Plugin WooCommerce PDF...

7.1CVSS7.1AI score0.00397EPSS
Exploits0References2
Patchstack
Patchstack
added 2024/03/26 12:0 a.m.16 views

WordPress WooCommerce PDF Invoices, Packing Slips, Delivery Notes and Shipping Labels Plugin <= 4.4.0 is vulnerable to Cross Site Scripting (XSS)

Software WooCommerce PDF Invoices, Packing Slips, Delivery Notes and Shipping Labels Type Plugin Vulnerable versions = 4.4.0 Fixed in 4.4.1 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-22288 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownershi...

7.1CVSS6.8AI score0.00397EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2024/03/22 2:0 a.m.88 views

CVE-2024-0957

CVE-2024-0957 affects the WordPress plugin “WooCommerce PDF Invoices, Packing Slips, Delivery Notes and Shipping Labels” up to version 4.4.1. It is a stored cross‑site scripting vulnerability in the Customer Notes field caused by insufficient input sanitization and output escaping, allowing unaut...

6.1CVSS7.8AI score0.00374EPSS
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2024/03/22 12:0 a.m.16 views

WordPress WooCommerce PDF Invoices, Packing Slips, Delivery Notes and Shipping Labels Plugin <= 4.4.1 is vulnerable to Cross Site Scripting (XSS)

Software WooCommerce PDF Invoices, Packing Slips, Delivery Notes and Shipping Labels Type Plugin Vulnerable versions = 4.4.1 Fixed in 4.4.2 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-0957 Patch priority Medium CVSS severity Medium 7.1 Developer...

6.1CVSS5.9AI score0.00374EPSS
Exploits0References3Affected Software1
Prion
Prion
added 2024/03/07 7:15 p.m.22 views

Deserialization of untrusted data

The PDF Invoices and Packing Slips For WooCommerce plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 1.3.7 via deserialization of untrusted input via the orderid parameter. This makes it possible for authenticated attackers, with subscriber-level...

6.5CVSS7.4AI score0.00967EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2024/03/07 6:49 p.m.10 views

CVE-2024-1773 PDF Invoices and Packing Slips For WooCommerce <= 1.3.7 - Authenticated (Subscriber+) PHP Object Injection

The PDF Invoices and Packing Slips For WooCommerce plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 1.3.7 via deserialization of untrusted input via the orderid parameter. This makes it possible for authenticated attackers, with subscriber-level...

8.8CVSS7.4AI score0.00967EPSS
Exploits0References3
CNNVD
CNNVD
added 2024/03/07 12:0 a.m.6 views

WordPress plugin PDF Invoices and Packing Slips For WooCommerce Security Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports PHP and MySQL server set up a personal blog site. WordPress plugin is an application plug-in. WordPress plugin PDF Invoices and...

8.8CVSS7.2AI score0.00967EPSS
Exploits0References4
NVD
NVD
added 2024/01/27 12:15 a.m.21 views

CVE-2024-22147

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in WP Overnight PDF Invoices & Packing Slips for WooCommerce.This issue affects PDF Invoices & Packing Slips for WooCommerce: from n/a through 3.7.5...

7.6CVSS7.9AI score0.0058EPSS
Exploits0References1
Rows per page
Query Builder