Lucene search
K

13 matches found

NVD
NVD
added 2026/06/15 9:17 p.m.14 views

CVE-2026-49110

Unauthenticated Broken Authentication in Upsell Order Bump Offer for WooCommerce = 3.1.4 versions...

7.5CVSS0.00236EPSS
Exploits0References1
CVE
CVE
added 2026/06/15 8:19 p.m.21 views

CVE-2026-49110

The CVE-2026-49110 entry concerns the WordPress plugin Upsell Order Bump Offer for WooCommerce, affected in versions <= 3.1.4. It describes an Unauthenticated Broken Authentication vulnerability enabling price manipulation in Upsell Order Bump offers. CVSSv3.1 metrics indicate Network attack v...

7.5CVSS5.2AI score0.00236EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/06/15 8:19 p.m.35 views

CVE-2026-49110 WordPress Upsell Order Bump Offer for WooCommerce plugin <= 3.1.4 - Price Manipulation vulnerability

Unauthenticated Broken Authentication in Upsell Order Bump Offer for WooCommerce = 3.1.4 versions...

7.5CVSS0.00236EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/15 8:19 p.m.8 views

EUVD-2026-36885

Unauthenticated Broken Authentication in Upsell Order Bump Offer for WooCommerce = 3.1.4 versions...

7.5CVSS5.2AI score0.00236EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/06/15 12:0 a.m.13 views

PT-2026-49510

Unauthenticated Broken Authentication in Upsell Order Bump Offer for WooCommerce = 3.1.4 versions...

7.5CVSS5.2AI score0.00236EPSS
Exploits0References2
Patchstack
Patchstack
added 2026/06/04 2:45 p.m.12 views

WordPress Upsell Order Bump Offer for WooCommerce plugin <= 3.1.4 - Price Manipulation vulnerability

Price Manipulation vulnerability discovered by Jakub Herman in WordPress Plugin Upsell Order Bump Offer for WooCommerce versions = 3.1.4...

7.5CVSS5.5AI score0.00236EPSS
Exploits0Affected Software1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-30484

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.00196EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/09/24 6:31 p.m.8 views

CVE-2025-59565

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in WP Swings Upsell Order Bump Offer for WooCommerce upsell-order-bump-offer-for-woocommerce allows Stored XSS.This issue affects Upsell Order Bump Offer for WooCommerce: from n/a through = 3.0.7...

6.5CVSS5.9AI score0.00196EPSS
Exploits0References1
NVD
NVD
added 2025/09/22 7:16 p.m.12 views

CVE-2025-59565

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in WP Swings Upsell Order Bump Offer for WooCommerce upsell-order-bump-offer-for-woocommerce allows Stored XSS.This issue affects Upsell Order Bump Offer for WooCommerce: from n/a through = 3.0.7...

6.5CVSS0.00196EPSS
Exploits0References1
Patchstack
Patchstack
added 2025/09/22 6:29 p.m.8 views

WordPress Upsell Order Bump Offer for WooCommerce Plugin <= 3.0.7 - Cross Site Scripting (XSS) Vulnerability

Cross Site Scripting XSS Vulnerability discovered by Muhammad Yudha - DJ in WordPress Plugin Upsell Order Bump Offer for WooCommerce versions = 3.0.7...

6.5CVSS6.1AI score0.00196EPSS
Exploits0Affected Software1
Cvelist
Cvelist
added 2025/09/22 6:26 p.m.15 views

CVE-2025-59565 WordPress Upsell Order Bump Offer for WooCommerce Plugin <= 3.0.7 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in WP Swings Upsell Order Bump Offer for WooCommerce upsell-order-bump-offer-for-woocommerce allows Stored XSS.This issue affects Upsell Order Bump Offer for WooCommerce: from n/a through = 3.0.7...

6.5CVSS0.00196EPSS
Exploits0References1
CVE
CVE
added 2025/09/22 6:26 p.m.15 views

CVE-2025-59565

CVE-2025-59565 is a Stored XSS in the Upsell Order Bump Offer for WooCommerce WordPress plugin affecting versions up to 3.0.7. Root cause: improper input neutralization during web page generation. Impact: attacker-supplied script stored on vulnerable sites; Wordfence notes patch status as Patched...

6.5CVSS5.9AI score0.00196EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/09/22 12:0 a.m.5 views

WordPress plugin Upsell Order Bump Offer for WooCommerce 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. WordPress is a blogging platform developed using the PHP language, which provides the ability to host personal blog sites on PHP and MySQL based...

6.5CVSS5.7AI score0.00196EPSS
Exploits0References1
Rows per page
Query Builder