Lucene search
K

58 matches found

Prion
Prion
added 2023/07/11 9:15 a.m.19 views

Cross site request forgery (csrf)

Cross-Site Request Forgery CSRF vulnerability in PI Websolution Conditional shipping & Advanced Flat rate shipping rates / Flexible shipping for WooCommerce shipping plugin = 1.6.4.4 versions...

6.8CVSS8.8AI score0.00246EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2023/07/11 8:36 a.m.53 views

CVE-2023-34015 WordPress Advanced Flat rate shipping Woocommerce Plugin <= 1.6.4.4 is vulnerable to Cross Site Request Forgery (CSRF)

Cross-Site Request Forgery CSRF vulnerability in PI Websolution Conditional shipping & Advanced Flat rate shipping rates / Flexible shipping for WooCommerce shipping plugin = 1.6.4.4 versions...

5.4CVSS9AI score0.00246EPSS
Exploits0References1
CVE
CVE
added 2023/07/11 8:36 a.m.41 views

CVE-2023-34015

CVE-2023-34015 concerns the WordPress plugin “Advanced Flat rate shipping Woocommerce” (part of the PI Websolution Conditional shipping & Advanced Flat rate shipping rates / Flexible shipping for WooCommerce) with a Cross-Site Request Forgery (CSRF) vulnerability. Technical details available in c...

8.8CVSS7.1AI score0.00246EPSS
Exploits0References1Affected Software1
WPVulnDB
WPVulnDB
added 2023/07/11 12:0 a.m.20 views

Advanced Flat rate shipping Woocommerce < 1.6.4.6 - Cross-Site Request Forgery

Cross-Site Request Forgery CSRF vulnerability in PI Websolution Conditional shipping & Advanced Flat rate shipping rates / Flexible shipping for WooCommerce shipping plugin = 1.6.4.4 versions...

8.8CVSS6.9AI score0.00246EPSS
Exploits0Affected Software1
Positive Technologies
Positive Technologies
added 2023/07/11 12:0 a.m.11 views

PT-2023-24633 · Woocommerce · Pi Websolution Conditional Shipping & Advanced Flat Rate Shipping Rates / Flexible Shipping

Name of the Vulnerable Software and Affected Versions: PI Websolution Conditional shipping & Advanced Flat rate shipping rates / Flexible shipping for WooCommerce shipping plugin versions = 1.6.4.4 Description: The issue is related to a Cross-Site Request Forgery CSRF vulnerability. This means an...

8.8CVSS8.9AI score0.00246EPSS
Exploits0References3
NVD
NVD
added 2023/06/26 8:15 a.m.13 views

CVE-2023-29423

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in PI Websolution Cancel order request / Return order / Repeat Order / Reorder for WooCommerce plugin = 1.3.2 versions...

5.9CVSS5.4AI score0.00369EPSS
Exploits0References1
OSV
OSV
added 2023/06/26 8:15 a.m.4 views

CVE-2023-29423

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in PI Websolution Cancel order request / Return order / Repeat Order / Reorder for WooCommerce plugin = 1.3.2 versions...

4.8CVSS7.3AI score0.00369EPSS
Exploits0References1
CVE
CVE
added 2023/06/26 7:13 a.m.37 views

CVE-2023-29423

CVE-2023-29423 corresponds to the WordPress Cancel order request WooCommerce plugin vulnerability. Public sources confirm an Auth. (admin+) Stored Cross-Site Scripting (XSS) flaw affecting the plugin’s Cancel order request / Return order / Repeat Order / Reorder endpoints in versions

5.9CVSS5AI score0.00369EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2023/06/26 7:13 a.m.19 views

CVE-2023-29423 WordPress Cancel order request WooCommerce Plugin <= 1.3.2 is vulnerable to Cross Site Scripting (XSS)

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in PI Websolution Cancel order request / Return order / Repeat Order / Reorder for WooCommerce plugin = 1.3.2 versions...

5.9CVSS5.6AI score0.00369EPSS
Exploits0References1
NVD
NVD
added 2023/06/26 6:15 a.m.41 views

CVE-2023-29093

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in PI Websolution Conditional cart fee plugin = 1.0.96 versions...

5.9CVSS5.7AI score0.00369EPSS
Exploits0References1
OSV
OSV
added 2023/06/26 6:15 a.m.3 views

CVE-2023-28991

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in PI Websolution Order date, Order pickup, Order date time, Pickup Location, delivery date for WooCommerce plugin = 3.0.19 versions...

4.8CVSS7.3AI score0.00369EPSS
Exploits0References1
OSV
OSV
added 2023/06/26 6:15 a.m.4 views

CVE-2023-28988

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in PI Websolution Direct checkout, Add to cart redirect, Quick purchase button, Buy now button, Quick View button for WooCommerce plugin = 2.1.48 versions...

4.8CVSS7.3AI score0.00369EPSS
Exploits0References1
NVD
NVD
added 2023/06/26 6:15 a.m.18 views

CVE-2023-28988

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in PI Websolution Direct checkout, Add to cart redirect, Quick purchase button, Buy now button, Quick View button for WooCommerce plugin = 2.1.48 versions...

5.9CVSS5.4AI score0.00369EPSS
Exploits0References1
Prion
Prion
added 2023/06/26 6:15 a.m.11 views

Cross site scripting

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in PI Websolution Conditional cart fee plugin = 1.0.96 versions...

4.3CVSS5.1AI score0.00369EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2023/06/26 6:15 a.m.20 views

Cross site scripting

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in PI Websolution Direct checkout, Add to cart redirect, Quick purchase button, Buy now button, Quick View button for WooCommerce plugin = 2.1.48 versions...

4.3CVSS4.8AI score0.00369EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2023/06/26 6:15 a.m.11 views

Cross site scripting

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in PI Websolution Order date, Order pickup, Order date time, Pickup Location, delivery date for WooCommerce plugin = 3.0.19 versions...

4.3CVSS4.9AI score0.00369EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/06/26 5:33 a.m.13 views

CVE-2023-29093 WordPress Conditional extra fees for woocommerce Plugin <= 1.0.96 is vulnerable to Cross Site Scripting (XSS)

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in PI Websolution Conditional cart fee plugin = 1.0.96 versions...

5.9CVSS6.9AI score0.00369EPSS
Exploits0References1
CVE
CVE
added 2023/06/26 5:33 a.m.35 views

CVE-2023-29093

CVE-2023-29093 is a Cross-Site Scripting vulnerability in the PI Websolution Conditional cart fee plugin for WordPress, affecting versions 1.0.96, specifically to 1.0.97, which addresses the XSS risk. Exploitation status is not detailed in the provided documents. Actionable takeaway: update the ...

5.9CVSS5.2AI score0.00369EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2023/06/26 5:27 a.m.26 views

CVE-2023-28991 WordPress Order date time for WooCommerce Plugin <= 3.0.19 is vulnerable to Cross Site Scripting (XSS)

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in PI Websolution Order date, Order pickup, Order date time, Pickup Location, delivery date for WooCommerce plugin = 3.0.19 versions...

5.9CVSS5.6AI score0.00369EPSS
Exploits0References1
CVE
CVE
added 2023/06/26 5:27 a.m.42 views

CVE-2023-28991

CVE-2023-28991 corresponds to a Stored XSS vulnerability in the PI Websolution Order date, Order pickup, Order date time, Pickup Location, and delivery date components of the WP plugin for WooCommerce, affected

5.9CVSS5AI score0.00369EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder