CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

9 matches found

Patchstack•added 2026/02/06 6:47 a.m.•5 views

WordPress PeproDev WooCommerce Receipt Uploader plugin <= 2.6.9 - Reflected Cross-Site Scripting vulnerability

Reflected Cross-Site Scripting vulnerability discovered by vgo0 in WordPress Plugin PeproDev WooCommerce Receipt Uploader versions = 2.6.9...

6.1CVSS8.3AI score0.02963EPSS

Exploits0References1Affected Software1

NVD•added 2025/02/03 3:15 p.m.•5 views

CVE-2025-24574

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Pepro Dev. Group PeproDev WooCommerce Receipt Uploader pepro-bacs-receipt-upload-for-woocommerce allows Reflected XSS.This issue affects PeproDev WooCommerce Receipt Uploader: from n/a through =...

7.1CVSS0.0005EPSS

Exploits0References1

CNNVD•added 2025/02/03 12:0 a.m.•1 views

WordPress plugin PeproDev WooCommerce Receipt Uploader 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...

7.1CVSS6.1AI score0.0005EPSS

Exploits0References1

Positive Technologies•added 2025/02/03 12:0 a.m.•2 views

PT-2025-5415 · Peprodev · Peprodev Woocommerce Receipt Uploader

Name of the Vulnerable Software and Affected Versions: PeproDev WooCommerce Receipt Uploader versions prior to 2.6.9 Description: The issue is related to improper neutralization of input during web page generation, which allows reflected Cross-site Scripting XSS. This means an attacker can inject...

7.1CVSS6.9AI score0.0005EPSS

Exploits0References4

Patchstack•added 2024/12/13 4:12 p.m.•2 views

WordPress PeproDev WooCommerce Receipt Uploader plugin <= 2.6.9 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by Mika in WordPress Plugin PeproDev WooCommerce Receipt Uploader versions = 2.6.9...

7.1CVSS6.1AI score0.0005EPSS

Exploits0Affected Software1

Cvelist•added 2024/11/16 3:20 a.m.•20 views

CVE-2024-8873 PeproDev WooCommerce Receipt Uploader <= 2.6.9 - Reflected Cross-Site Scripting

The PeproDev WooCommerce Receipt Uploader plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of addqueryarg without appropriate escaping on the URL in all versions up to, and including, 2.6.9. This makes it possible for unauthenticated attackers to inject arbitrar...

6.1CVSS0.02963EPSS

Exploits0References3

Vulnrichment•added 2024/11/16 3:20 a.m.•8 views

CVE-2024-8873 PeproDev WooCommerce Receipt Uploader <= 2.6.9 - Reflected Cross-Site Scripting

6.1CVSS6.4AI score0.02963EPSS

Exploits0References2

CNNVD•added 2024/11/16 12:0 a.m.•1 views

WordPress plugin PeproDev WooCommerce Receipt Uploader 跨站脚本漏洞

6.1CVSS7.6AI score0.02963EPSS

Exploits0References2

Positive Technologies•added 2024/09/18 12:0 a.m.•3 views

PT-2024-39291 · WordPress · Peprodev Woocommerce Receipt Uploader

Name of the Vulnerable Software and Affected Versions: PeproDev WooCommerce Receipt Uploader plugin for WordPress versions up to, and including, 2.6.9 Description: The issue is related to Reflected Cross-Site Scripting due to the use of add query arg without appropriate escaping on the URL. This...

6.1CVSS8.6AI score0.02963EPSS

Exploits0References7

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by