7 matches found
CVE-2023-45761
Unauth. Reflected Cross-Site Scripting XSS vulnerability in Joovii Sendle Shipping Plugin plugin = 5.13 versions...
CVE-2025-62976 WordPress Sendle Shipping plugin <= 6.02 - Broken Access Control vulnerability
Missing Authorization vulnerability in Joovii Sendle Shipping official-sendle-shipping-method allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Sendle Shipping: from n/a through = 6.02...
WordPress Sendle Shipping plugin <= 6.02 - Cross Site Request Forgery (CSRF) vulnerability
Cross Site Request Forgery CSRF vulnerability discovered by Skalucy in WordPress Plugin Sendle Shipping versions = 6.02...
CVE-2025-60139
CVE-2025-60139 is a Cross-Site Request Forgery (CSRF) vulnerability in the WordPress plugin official-sendle-shipping-method (Sendle Shipping). It affects Sendle Shipping versions from n/a up to and including 6.02. The associated CVSS 3.1 metrics indicate a Medium risk (4.3) with network attack ve...
Cross site scripting
Unauth. Reflected Cross-Site Scripting XSS vulnerability in Joovii Sendle Shipping Plugin plugin = 5.13 versions...
WordPress Plugin Sendle Shipping Plugin Cross-Site Scripting Vulnerability
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting vulnerability...
CVE-2023-45761
CVE-2023-45761 is an unauthenticated Reflected Cross-Site Scripting (XSS) flaw affecting the Joovii Sendle Shipping Plugin for WordPress (Sendle Shipping Plugin) versions <= 5.13. Public sources describe an XSS vulnerability that can be triggered without authentication, with CVSS guidance rang...