19 matches found
CVE-2023-45271
Missing Authorization vulnerability in WPXPO WowStore product-blocks allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WowStore: from n/a through = 2.7.8...
EUVD-2023-49577
Malicious code in bioql PyPI...
EUVD-2024-21007
Malicious code in bioql PyPI...
CVE-2024-23512
Deserialization of Untrusted Data vulnerability in wpxpo ProductX – WooCommerce Builder & Gutenberg WooCommerce Blocks.This issue affects ProductX – WooCommerce Builder & Gutenberg WooCommerce Blocks: from n/a through 3.1.4...
CVE-2023-45271
Missing Authorization vulnerability in WPXPO WowStore product-blocks allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WowStore: from n/a through = 2.7.8...
CVE-2023-45271 WordPress ProductX – Gutenberg WooCommerce Blocks plugin <= 2.7.8 - Broken Access Control vulnerability
Missing Authorization vulnerability in WPXPO WowStore product-blocks allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WowStore: from n/a through = 2.7.8...
CVE-2023-45271 WordPress ProductX – Gutenberg WooCommerce Blocks plugin <= 2.7.8 - Broken Access Control vulnerability
Missing Authorization vulnerability in WPXPO WowStore product-blocks allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WowStore: from n/a through = 2.7.8...
PT-2025-1488 · Wowstore Team · Gutenberg Woocommerce Blocks
Name of the Vulnerable Software and Affected Versions: ProductX – Gutenberg WooCommerce Blocks versions 2.7.8 and earlier Description: The issue is related to a Missing Authorization vulnerability in WowStore Team ProductX – Gutenberg WooCommerce Blocks, allowing exploitation of incorrectly...
WordPress plugin ProductX 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...
CVE-2024-23512
Deserialization of Untrusted Data vulnerability in wpxpo ProductX – WooCommerce Builder & Gutenberg WooCommerce Blocks.This issue affects ProductX – WooCommerce Builder & Gutenberg WooCommerce Blocks: from n/a through 3.1.4...
CVE-2024-23512
Deserialization of Untrusted Data vulnerability in wpxpo ProductX – WooCommerce Builder & Gutenberg WooCommerce Blocks.This issue affects ProductX – WooCommerce Builder & Gutenberg WooCommerce Blocks: from n/a through 3.1.4...
CVE-2024-23512 WordPress ProductX – Gutenberg WooCommerce Blocks Plugin <= 3.1.4 is vulnerable to PHP Object Injection
Deserialization of Untrusted Data vulnerability in wpxpo ProductX – WooCommerce Builder & Gutenberg WooCommerce Blocks.This issue affects ProductX – WooCommerce Builder & Gutenberg WooCommerce Blocks: from n/a through 3.1.4...
CVE-2024-23512 WordPress ProductX – Gutenberg WooCommerce Blocks Plugin <= 3.1.4 is vulnerable to PHP Object Injection
Deserialization of Untrusted Data vulnerability in wpxpo ProductX – WooCommerce Builder & Gutenberg WooCommerce Blocks.This issue affects ProductX – WooCommerce Builder & Gutenberg WooCommerce Blocks: from n/a through 3.1.4...
CVE-2024-23512
CVE-2024-23512: WordPress ProductX – WooCommerce Builder & Gutenberg WooCommerce Blocks is affected by a PHP Object Injection via deserialization of untrusted data in versions ≤ 3.1.4. Patch 3.1.5 resolves the issue. No exploitation details are provided in the supplied documents. Remediation: upg...
PT-2024-19913 · Unknown · Productx – Woocommerce Builder & Gutenberg Woocommerce Blocks
Name of the Vulnerable Software and Affected Versions: ProductX – WooCommerce Builder & Gutenberg WooCommerce Blocks versions 3.1.4 and earlier Description: The issue is related to Deserialization of Untrusted Data, which affects the ProductX – WooCommerce Builder & Gutenberg WooCommerce Blocks...
WordPress Plugin ProductX Code Issue Vulnerability
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A code issue vulnerability exists in...
WordPress ProductX – Gutenberg WooCommerce Blocks Plugin <= 3.1.4 is vulnerable to PHP Object Injection
Software ProductX – Gutenberg WooCommerce Blocks Type Plugin Vulnerable versions = 3.1.4 Fixed in 3.1.5 OWASP Top 10 A3: Injection Classification PHP Object Injection CVE CVE-2024-23512 Patch priority High CVSS severity High 8.7 Developer Claim ownership PSID fa4448964e74 Credits Yudistira Arya...
ProductX – Gutenberg WooCommerce Blocks < 3.0.0 - Missing Authorization via option_data_save
Description The ProductX – Gutenberg WooCommerce Blocks plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the optiondatasave function in versions up to, and including, 2.7.8. This makes it possible for authenticated attackers, with...
WordPress ProductX – Gutenberg WooCommerce Blocks Plugin <= 2.7.8 is vulnerable to Broken Access Control
Software ProductX – Gutenberg WooCommerce Blocks Type Plugin Vulnerable versions = 2.7.8 Fixed in 3.0.0 OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2023-45271 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID ca21a9a7374c Credits Abdi...