62 matches found
EUVD-2026-11915
Concurrent Execution using Shared Resource with Improper Synchronization 'Race Condition' vulnerability in Subrata Mal TeraWallet – For WooCommerce woo-wallet allows Leveraging Race Conditions.This issue affects TeraWallet – For WooCommerce: from n/a through = 1.5.15...
CVE-2026-32398 WordPress TeraWallet – For WooCommerce plugin <= 1.5.15 - Race Condition vulnerability
Concurrent Execution using Shared Resource with Improper Synchronization 'Race Condition' vulnerability in Subrata Mal TeraWallet – For WooCommerce woo-wallet allows Leveraging Race Conditions.This issue affects TeraWallet – For WooCommerce: from n/a through = 1.5.15...
CVE-2026-32398
CVE-2026-32398: The Red Hat/NVD/CCVE and CVE records identify a race-condition vulnerability in the WordPress TeraWallet – For WooCommerce plugin, affecting versions up to and including 1.5.15. The issue is described as Concurrent Execution using a Shared Resource with Improper Synchronization, i...
CVE-2026-32398 WordPress TeraWallet – For WooCommerce plugin <= 1.5.15 - Race Condition vulnerability
Concurrent Execution using Shared Resource with Improper Synchronization 'Race Condition' vulnerability in Subrata Mal TeraWallet – For WooCommerce woo-wallet allows Leveraging Race Conditions.This issue affects TeraWallet – For WooCommerce: from n/a through = 1.5.15...
WordPress plugin TeraWallet – For WooCommerce 竞争条件问题漏洞
WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be install...
EUVD-2022-43499
Malicious code in bioql PyPI...
EUVD-2024-17424
Malicious code in bioql PyPI...
EUVD-2024-30386
Malicious code in bioql PyPI...
EUVD-2022-39114
Malicious code in bioql PyPI...
EUVD-2022-43324
Malicious code in bioql PyPI...
CVE-2024-32584
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in StandaloneTech TeraWallet – For WooCommerce allows Stored XSS.This issue affects TeraWallet – For WooCommerce: from n/a through 1.5.0...
CVE-2024-1690
The TeraWallet – Best WooCommerce Wallet System With Cashback Rewards, Partial Payment, Wallet Refunds plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the terawalletexportusersearch function in all versions up to, and including, 1.4.10. This...
CVE-2022-3995
The TeraWallet plugin for WordPress is vulnerable to Insecure Direct Object Reference in versions up to, and including, 1.4.3. This is due to insufficient validation of the user-controlled key on the lockunlockterawallet AJAX action. This makes it possible for authenticated attackers, with...
CVE-2022-40198
Cross-Site Request Forgery CSRF vulnerability in StandaloneTech TeraWallet – For WooCommerce plugin = 1.3.24 leading to plugin settings change...
WordPress Wallet for WooCommerce plugin <= 1.5.6 - Authenticated (Subscriber+) Incorrect Conversion between Numeric Types vulnerability
Authenticated Subscriber+ Incorrect Conversion between Numeric Types vulnerability discovered by stealthcopter in WordPress Plugin TeraWallet – For WooCommerce versions = 1.5.6...
WordPress TeraWallet – For WooCommerce Plugin <= 1.5.4 is vulnerable to SQL Injection
Software TeraWallet – For WooCommerce Type Plugin Vulnerable versions = 1.5.4 Fixed in 1.5.5 OWASP Top 10 A1: Injection Classification SQL Injection CVE CVE-2024-6353 Patch priority High CVSS severity High 8.5 Developer Claim ownership PSID bfb2680725ce Credits 1337Wannabe Required privilege...
TeraWallet – Best WooCommerce Wallet System With Cashback Rewards, Partial Payment, Wallet Refunds < 1.5.1 - Authenticated (Shop Manager+) Stored Cross-Site Scripting
Description The TeraWallet – Best WooCommerce Wallet System With Cashback Rewards, Partial Payment, Wallet Refunds plugin for WordPress is vulnerable to Stored Cross-Site Scripting via settings in all versions up to, and including, 1.5.0 due to insufficient input sanitization and output escaping...
CVE-2024-32584
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in StandaloneTech TeraWallet – For WooCommerce allows Stored XSS.This issue affects TeraWallet – For WooCommerce: from n/a through 1.5.0...
CVE-2024-32584
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in StandaloneTech TeraWallet – For WooCommerce allows Stored XSS.This issue affects TeraWallet – For WooCommerce: from n/a through 1.5.0...
CVE-2024-32584 WordPress TeraWallet plugin <= 1.5.0 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in StandaloneTech TeraWallet – For WooCommerce allows Stored XSS.This issue affects TeraWallet – For WooCommerce: from n/a through 1.5.0...