CVE-2025-22510

Deserialization of Untrusted Data vulnerability in kkarpieszuk WC Price History for Omnibus wc-price-history allows Object Injection.This issue affects WC Price History for Omnibus: from n/a through = 2.1.4...

CVE-2025-22510

Deserialization of Untrusted Data vulnerability in kkarpieszuk WC Price History for Omnibus wc-price-history allows Object Injection.This issue affects WC Price History for Omnibus: from n/a through = 2.1.4...

CVE-2025-22510 WordPress WC Price History for Omnibus plugin <= 2.1.4 - PHP Object Injection vulnerability

Deserialization of Untrusted Data vulnerability in Konrad Karpieszuk WC Price History for Omnibus allows Object Injection.This issue affects WC Price History for Omnibus: from n/a through 2.1.4...

PT-2025-4503 · Konrad Karpieszuk · Wc Price History For Omnibus

Name of the Vulnerable Software and Affected Versions: Konrad Karpieszuk WC Price History for Omnibus versions n/a through 2.1.4 Description: The issue is related to the deserialization of untrusted data, which allows object injection. This can potentially lead to security breaches...

WordPress plugin WC Price History for Omnibus 代码问题漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A code issue vulnerability...

Exploit for CVE-2025-22510

CVE-2025-22510 1️⃣ Component type WordPress plugin 2️...

WordPress WC Price History for Omnibus plugin <= 2.1.4 - PHP Object Injection vulnerability

PHP Object Injection vulnerability discovered by Webula Patchstack Alliance in WordPress Plugin WC Price History for Omnibus versions = 2.1.4...

CVE-2024-12617

The WC Price History for Omnibus plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on several AJAX actions in all versions up to, and including, 2.1.3. This makes it possible for authenticated attackers, with Subscriber-level access and above, to view and...

CVE-2024-12617 WC Price History for Omnibus <= 2.1.3 - Missing Authorization

The WC Price History for Omnibus plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on several AJAX actions in all versions up to, and including, 2.1.3. This makes it possible for authenticated attackers, with Subscriber-level access and above, to view and...

CVE-2024-12617

CVE-2024-12617 affects WC Price History for Omnibus (WordPress). The issue is a missing capability check on several AJAX actions, permitting authenticated users with Subscriber level and above to view and modify history data. This is confirmed by Red Hat/Wordfence references noting the WC Price H...

WordPress plugin WC Price History for Omnibus 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

PT-2024-17675 · WordPress · Wc Price History For Omnibus

Name of the Vulnerable Software and Affected Versions: WC Price History for Omnibus plugin for WordPress versions up to, and including, 2.1.3 Description: The issue is related to unauthorized access due to a missing capability check on several AJAX actions. This allows authenticated attackers wit...

WordPress WC Price History for Omnibus plugin <= 2.1.3 - Missing Authorization vulnerability

Missing Authorization vulnerability discovered by Lucio Sá in WordPress Plugin WC Price History for Omnibus versions = 2.1.3...

WordPress Product Price History for WooCommerce Plugin < 2.1.6 is vulnerable to Cross Site Scripting (XSS)

Software Product Price History for WooCommerce Type Plugin Vulnerable versions 2.1.6 Fixed in 2.1.6 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID f6582974ed46 Credits Rafie Muhamm...

Improper Privilege Management in bigprof-software/online-invoicing-system

💥 BUG privilege escalation bug to add item to a price-history 💥 IMPACT unprivileged user can add item to a price-history 💥 STEP TO REPRODUCE 1. From admin account goto http://localhost/online-invoice2/app/admin/pageViewMembers.php and add new user called user-B .\ Now revoke all acccess from item...