36 matches found
EUVD-2024-22249
Malicious code in bioql PyPI...
EUVD-2024-52149
Malicious code in bioql PyPI...
CVE-2024-24886
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Acowebs Product Labels For Woocommerce Sale Badges allows Stored XSS.This issue affects Product Labels For Woocommerce Sale Badges: from n/a through 1.5.3...
CVE-2022-0399
The Advanced Product Labels for WooCommerce WordPress plugin before 1.2.3.7 does not sanitise and escape the taxcolorsettype parameter before outputting it back in the berocketaplcolorlistener AJAX action's response, leading to a Reflected Cross-Site Scripting...
CVE-2024-10638
The Product Labels For Woocommerce Sale Badges WordPress plugin before 1.5.11 does not sanitize and escape a parameter before using it in a SQL statement, allowing admins to perform SQL injection attacks...
WordPress Product Labels For Woocommerce plugin < 1.5.9 - Admin+ SQLi vulnerability
Admin+ SQLi vulnerability discovered by tu3n4nh in WordPress Plugin Product Labels For Woocommerce versions 1.5.9...
WordPress Product Labels For Woocommerce plugin < 1.5.11 - Admin+ SQLi vulnerability
Admin+ SQLi vulnerability discovered by tu3n4nh in WordPress Plugin Product Labels For Woocommerce versions 1.5.11...
CVE-2024-12109 Product Labels For Woocommerce < 1.5.9 - Admin+ SQLi
The Product Labels For Woocommerce Sale Badges WordPress plugin before 1.5.9 does not sanitize and escape a parameter before using it in a SQL statement, allowing admins to perform SQL injection attacks...
CVE-2024-12109 Product Labels For Woocommerce < 1.5.9 - Admin+ SQLi
The Product Labels For Woocommerce Sale Badges WordPress plugin before 1.5.9 does not sanitize and escape a parameter before using it in a SQL statement, allowing admins to perform SQL injection attacks...
CVE-2024-10638 Product Labels For Woocommerce < 1.5.11 - Admin+ SQLi
The Product Labels For Woocommerce Sale Badges WordPress plugin before 1.5.11 does not sanitize and escape a parameter before using it in a SQL statement, allowing admins to perform SQL injection attacks...
CVE-2024-10638
The CVE-2024-10638 entry concerns the WordPress plugin Product Labels For Woocommerce (Sale Badges) prior to version 1.5.11. The issue is a SQL injection vulnerability caused by not sanitizing/escaping a parameter before it is used in a SQL statement. Impact is admins with high privileges could p...
WordPress plugin Product Labels For Woocommerce (Sale Badges) 安全漏洞
WordPress and WordPress plugin are products of the WordPress Foundation, a blogging platform developed in PHP. WordPress is a blogging platform developed using the PHP language, which supports personal blogs on PHP and MySQL servers. A security vulnerability exists in WordPress plugin Product...
PT-2025-12750 · WordPress · The Product Table For Woocommerce
Name of the Vulnerable Software and Affected Versions: Product Labels For Woocommerce Sale Badges versions prior to 1.5.9 Description: The issue allows admins to perform SQL injection attacks due to a parameter not being sanitized and escaped before use in a SQL statement. Recommendations: For...
WordPress plugin Product Labels For Woocommerce (Sale Badges) 安全漏洞
WordPress and WordPress plugin are products of the WordPress Foundation, a blogging platform developed in PHP. WordPress is a blogging platform developed using the PHP language, which supports personal blogs on PHP and MySQL servers. A security vulnerability exists in WordPress plugin Product...
How Counterfeiters Use Technology to Fake Product Labels (and Strategies to Combat Fraud)
Counterfeit products are a growing problem in today’s market. With advancements in technology, counterfeiters have become more skilled…...
CVE-2024-53817
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in acowebs Product Labels For Woocommerce aco-product-labels-for-woocommerce allows Blind SQL Injection.This issue affects Product Labels For Woocommerce: from n/a through = 1.5.8...
CVE-2024-53817
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in acowebs Product Labels For Woocommerce aco-product-labels-for-woocommerce allows Blind SQL Injection.This issue affects Product Labels For Woocommerce: from n/a through = 1.5.8...
CVE-2024-53817 WordPress Acowebs Product Labels For Woocommerce plugin <= 1.5.8 - SQL Injection vulnerability
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in acowebs Product Labels For Woocommerce aco-product-labels-for-woocommerce allows Blind SQL Injection.This issue affects Product Labels For Woocommerce: from n/a through = 1.5.8...
CVE-2024-53817
CVE-2024-53817 affects the WordPress plugin Product Labels For Woocommerce (Acowebs) and is caused by improper neutralization of special elements in SQL commands, enabling a blind SQL injection. Affected versions are 1.5.8 and earlier. The vulnerability is described as allowing Blind SQL Injectio...
CVE-2024-53817 WordPress Acowebs Product Labels For Woocommerce plugin <= 1.5.8 - SQL Injection vulnerability
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Acowebs Product Labels For Woocommerce allows Blind SQL Injection.This issue affects Product Labels For Woocommerce: from n/a through 1.5.8...