Lucene search
+L

33 matches found

RedhatCVE
RedhatCVE
added 2025/03/17 10:24 p.m.7 views

CVE-2025-26553

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Spring Devs Pre Order Addon for WooCommerce – Advance Order/Backorder Plugin wc-pre-order allows Reflected XSS.This issue affects Pre Order Addon for WooCommerce – Advance Order/Backorder Plugin:...

7.1CVSS7.2AI score0.00211EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/05 12:58 p.m.11 views

CVE-2024-43943

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Wpsoul Greenshift Woocommerce Addon allows SQL Injection.This issue affects Greenshift Woocommerce Addon: from n/a before 1.9.8...

8.8CVSS7.5AI score0.00441EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2024/11/23 12:0 a.m.7 views

PT-2024-16337 · WordPress · Wishlist For Woocommerce: Multi Wishlists Per Customer

Name of the Vulnerable Software and Affected Versions: The Wishlist for WooCommerce: Multi Wishlists Per Customer PRO plugin for WordPress versions 3.0.8 through 3.1.2 Description: The issue is related to Reflected Cross-Site Scripting due to insufficient input sanitization and output escaping vi...

6.1CVSS8.8AI score0.00492EPSS
Exploits0References9
NVD
NVD
added 2024/08/29 4:15 p.m.25 views

CVE-2024-43943

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Wpsoul Greenshift Woocommerce Addon allows SQL Injection.This issue affects Greenshift Woocommerce Addon: from n/a before 1.9.8...

8.8CVSS0.00441EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/08/29 3:14 p.m.18 views

CVE-2024-43943 WordPress Greenshift Woocommerce Addon plugin < 1.9.8 - Subscriber+ SQL Injection vulnerability

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Wpsoul Greenshift Woocommerce Addon allows SQL Injection.This issue affects Greenshift Woocommerce Addon: from n/a before 1.9.8...

8.5CVSS7.7AI score0.00441EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/08/29 3:14 p.m.35 views

CVE-2024-43943 WordPress Greenshift Woocommerce Addon plugin < 1.9.8 - Subscriber+ SQL Injection vulnerability

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Wpsoul Greenshift Woocommerce Addon allows SQL Injection.This issue affects Greenshift Woocommerce Addon: from n/a before 1.9.8...

8.5CVSS0.00441EPSS
Exploits0References1
CVE
CVE
added 2024/08/29 3:14 p.m.61 views

CVE-2024-43943

CVE-2024-43943 is an SQL Injection in the Greenshift WooCommerce Addon (Wpsoul Greenshift WooCommerce Addon) and affects before version 1.9.8. The connected documents confirm the vulnerability and indicate the fix is in 1.9.8 or later; no explicit exploitation details are provided. Remediation: u...

8.8CVSS9.1AI score0.00441EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2024/08/29 12:0 a.m.6 views

WordPress plugin Wpsoul Greenshift Woocommerce Addon SQL注入漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A SQL injection vulnerability exists in...

8.8CVSS7.8AI score0.00441EPSS
Exploits0References2
Patchstack
Patchstack
added 2024/08/26 12:32 p.m.7 views

WordPress Greenshift Woocommerce Addon plugin < 1.9.8 - Subscriber+ SQL Injection vulnerability

Subscriber+ SQL Injection vulnerability discovered by Dave Jong Patchstack in WordPress Plugin Greenshift Woocommerce Addon versions 1.9.8...

8.8CVSS8.1AI score0.00441EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2024/08/26 12:0 a.m.14 views

WordPress Greenshift Woocommerce Addon Plugin < 1.9.8 is vulnerable to SQL Injection

Software Greenshift Woocommerce Addon Type Plugin Vulnerable versions 1.9.8 Fixed in 1.9.8 OWASP Top 10 A3: Injection Classification SQL Injection CVE CVE-2024-43943 Patch priority High CVSS severity High 8.5 Developer Claim ownership PSID 998dac6720c9 Credits Dave Jong Patchstack Required...

8.8CVSS6.8AI score0.00441EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2024/06/09 7:15 p.m.6 views

CVE-2024-35662

Missing Authorization vulnerability in Andreas Sofantzis Simple COD Fees for WooCommerce.This issue affects Simple COD Fees for WooCommerce: from n/a through 2.0.2...

8.8CVSS5.8AI score0.00351EPSS
Exploits0References1
CNNVD
CNNVD
added 2023/09/25 12:0 a.m.6 views

WordPress plugin All in One B2B for WooCommerce Cross-Site Request Forgery Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site request forgery vulnerability...

8.8CVSS6.7AI score0.00321EPSS
Exploits2References2
CNNVD
CNNVD
added 2021/09/28 12:0 a.m.5 views

WordPress 插件跨站请求伪造漏洞

WordPress is the Wordpress Foundation's set of blogging platform developed using the PHP language . The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an open source application plugin for WordPress. Countdown and CountUp WooCommerce Sales Timer...

8.8CVSS8AI score0.00605EPSS
Exploits0References4
Rows per page
Query Builder