Lucene search
K

7 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2024-51657

Malicious code in bioql PyPI...

7.5CVSS8.7AI score0.00408EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/02/14 9:52 a.m.9 views

CVE-2024-13531

The ShipEngine Shipping Quotes plugin for WordPress is vulnerable to SQL Injection via the 'editid' parameter in all versions up to, and including, 1.0.7 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possibl...

7.5CVSS9.6AI score0.00408EPSS
Exploits0References1
OSV
OSV
added 2025/02/12 10:15 a.m.4 views

CVE-2024-13531

The ShipEngine Shipping Quotes plugin for WordPress is vulnerable to SQL Injection via the 'editid' parameter in all versions up to, and including, 1.0.7 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possibl...

7.5CVSS7.3AI score0.00408EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/02/12 9:22 a.m.14 views

CVE-2024-13531 ShipEngine Shipping Quotes <= 1.0.7 - Unauthenticated SQL Injection

The ShipEngine Shipping Quotes plugin for WordPress is vulnerable to SQL Injection via the 'editid' parameter in all versions up to, and including, 1.0.7 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possibl...

7.5CVSS0.00408EPSS
Exploits0References2
CVE
CVE
added 2025/02/12 9:22 a.m.48 views

CVE-2024-13531

CVE-2024-13531 affects ShipEngine Shipping Quotes plugin for WordPress. The vulnerability is an unauthenticated SQL Injection via the edit_id parameter in all versions up to 1.0.7, caused by insufficient escaping of user input and lack of proper SQL query preparation. Successful exploitation coul...

7.5CVSS7.6AI score0.00408EPSS
Exploits0References2Affected Software1
CNNVD
CNNVD
added 2025/02/12 12:0 a.m.2 views

WordPress plugin ShipEngine Shipping Quotes SQL注入漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A SQL injection vulnerabili...

7.5CVSS8.7AI score0.00408EPSS
Exploits0References2
Patchstack
Patchstack
added 2025/02/11 10:48 p.m.3 views

WordPress ShipEngine Shipping Quotes plugin <= 1.0.7 - Unauthenticated SQL Injection vulnerability

Unauthenticated SQL Injection vulnerability discovered by Colin Xu in WordPress Plugin ShipEngine Shipping Quotes versions = 1.0.7...

7.5CVSS8.1AI score0.00408EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder