PT-2024-17487 · WordPress · Print Invoice & Delivery Notes For Woocommerce

Name of the Vulnerable Software and Affected Versions: Print Invoice & Delivery Notes for WooCommerce plugin for WordPress versions up to, and including, 5.4.0 Description: The issue is due to a missing capability check on the wcdn remove shoplogo AJAX action. This makes it possible for...

WordPress plugin Print Invoice & Delivery Notes for WooCommerce 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A security vulnerability exists in the...

WordPress Print Invoice & Delivery Notes for WooCommerce plugin <= 5.4.0 - Missing Authorization to Authenticated (Subscriber+) Logo Deletion vulnerability

Missing Authorization to Authenticated Subscriber+ Logo Deletion vulnerability discovered by Tieu Pham Trong Nhan in WordPress Plugin Print Invoice & Delivery Notes for WooCommerce versions = 5.4.0...

CVE-2022-46795

Missing Authorization vulnerability in Tyche Softwares Print Invoice & Delivery Notes for WooCommerce allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Print Invoice & Delivery Notes for WooCommerce: from n/a through 4.7.2...

CVE-2022-46795

Summary of CVE-2022-46795 (Print Invoice & Delivery Notes for WooCommerce) Issue: A Missing Authorization vulnerability allows exploitation of misconfigured access control in the WordPress plugin Print Invoice & Delivery Notes for WooCommerce (versions &lt;= 4.7.2). Root cause: Inadequate authori...

CVE-2024-4233

Missing Authorization vulnerability in Tyche Softwares Print Invoice & Delivery Notes for WooCommerce, Tyche Softwares Arconix Shortcodes, Tyche Softwares Arconix FAQ.This issue affects Print Invoice & Delivery Notes for WooCommerce: from n/a through 4.8.1; Arconix Shortcodes: from n/a through...

CVE-2024-4233 Broken Access Control vulnerability in multiple WordPress plugins by Tyche Softwares

Missing Authorization vulnerability in Tyche Softwares Print Invoice & Delivery Notes for WooCommerce, Tyche Softwares Arconix Shortcodes, Tyche Softwares Arconix FAQ.This issue affects Print Invoice & Delivery Notes for WooCommerce: from n/a through 4.8.1; Arconix Shortcodes: from n/a through...

CVE-2024-4233 Broken Access Control vulnerability in multiple WordPress plugins by Tyche Softwares

Missing Authorization vulnerability in Tyche Softwares Print Invoice & Delivery Notes for WooCommerce, Tyche Softwares Arconix Shortcodes, Tyche Softwares Arconix FAQ.This issue affects Print Invoice & Delivery Notes for WooCommerce: from n/a through 4.8.1; Arconix Shortcodes: from n/a through...

CVE-2024-4233

CVE-2024-4233 is a Missing Authorization vulnerability affecting Tyche Softwares plugins: Print Invoice & Delivery Notes for WooCommerce (up to v4.8.1), Arconix Shortcodes (up to v2.1.10), and Arconix FAQ (up to v1.9.3). Connected PT security details specify the issue can be exploited remotely. R...

WordPress plugin 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability exist...

PT-2024-29873 · Arconix +1 · Arconix Faq +2

Name of the Vulnerable Software and Affected Versions: Print Invoice & Delivery Notes for WooCommerce versions 4.8.1 and earlier Arconix Shortcodes versions 2.1.10 and earlier Arconix FAQ versions 1.9.3 and earlier Description: The issue is related to a Missing Authorization vulnerability. This...

WordPress Print Invoice & Delivery Notes for WooCommerce plugin <= 4.8.1 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Dhabaleshwar Das Patchstack Alliance in WordPress Plugin Print Invoice & Delivery Notes for WooCommerce versions = 4.8.1...

WordPress Print Invoice & Delivery Notes for WooCommerce Plugin <= 4.8.1 is vulnerable to Broken Access Control

Software Print Invoice & Delivery Notes for WooCommerce Type Plugin Vulnerable versions = 4.8.1 Fixed in 4.9.0 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2024-4233 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 78b1e6c0b7b8 Credits...

CVE-2023-0479

The Print Invoice & Delivery Notes for WooCommerce WordPress plugin before 4.7.2 is vulnerable to reflected XSS by echoing a GET value in an admin note within the WooCommerce orders page. This means that this vulnerability can be exploited for users with the editothersshoporders capability...

Cross site scripting

The Print Invoice & Delivery Notes for WooCommerce WordPress plugin before 4.7.2 is vulnerable to reflected XSS by echoing a GET value in an admin note within the WooCommerce orders page. This means that this vulnerability can be exploited for users with the editothersshoporders capability...

CVE-2023-0479

The CVE-2023-0479 entry affects the WordPress plugin Print Invoice & Delivery Notes for WooCommerce, prior to version 4.7.2. The issue is a reflected XSS vulnerability in an admin note on the WooCommerce orders page, caused by echoing a GET value after a urldecode() cleanup (post-esc_url_raw()), ...

WordPress plugin Print Invoice & Delivery Notes for WooCommerce 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A security vulnerability exists in the...

WordPress Print Invoice & Delivery Notes for WooCommerce Plugin <= 4.7.2 is vulnerable to Cross Site Request Forgery (CSRF)

Software Print Invoice & Delivery Notes for WooCommerce Type Plugin Vulnerable versions = 4.7.2 Fixed in 4.7.3 OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2022-46795 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID...

WordPress plugin Print Invoice & Delivery Notes for WooCommerce 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

CVE-2021-3380

Insecure direct object reference IDOR vulnerability in ICREM H8 SSRMS allows attackers to disclose sensitive information via the Print Invoice Functionality...