157 matches found
CVE-2025-9286
The Appy Pie Connect for WooCommerce plugin for WordPress is vulnerable to Privilege Escalation due to missing authorization within the resetuserpassword REST handler in all versions up to, and including, 1.1.2. This makes it possible for unauthenticated attackers to to reset the password of...
WordPress Appy Pie Connect for WooCommerce plugin <= 1.1.2 - Missing Authorization to Unauthenticated Privilege Escalation via reset_user_password vulnerability
Missing Authorization to Unauthenticated Privilege Escalation via resetuserpassword vulnerability discovered by johska in WordPress Plugin Appy Pie Connect for WooCommerce versions = 1.1.2...
EUVD-2023-56900
Malicious code in bioql PyPI...
EUVD-2025-3798
Malicious code in bioql PyPI...
EUVD-2025-26975
Malicious code in bioql PyPI...
EUVD-2024-25133
Malicious code in bioql PyPI...
EUVD-2025-28157
Malicious code in bioql PyPI...
EUVD-2022-47570
Malicious code in bioql PyPI...
EUVD-2025-11279
Malicious code in bioql PyPI...
EUVD-2024-26995
Malicious code in bioql PyPI...
EUVD-2025-10679
Malicious code in bioql PyPI...
EUVD-2025-3021
Malicious code in bioql PyPI...
EUVD-2025-12491
Malicious code in bioql PyPI...
CVE-2025-57914
Cross-Site Request Forgery CSRF vulnerability in Matat Technologies Deliver via Shipos for WooCommerce wc-shipos-delivery allows Cross Site Request Forgery.This issue affects Deliver via Shipos for WooCommerce: from n/a through = 3.0.2...
CVE-2025-57977 WordPress Flexible PDF Invoices for WooCommerce & WordPress Plugin <= 6.0.13 - Cross Site Request Forgery (CSRF) Vulnerability
Cross-Site Request Forgery CSRF vulnerability in wpdesk Flexible PDF Invoices for WooCommerce & WordPress flexible-invoices allows Cross Site Request Forgery.This issue affects Flexible PDF Invoices for WooCommerce & WordPress: from n/a through = 6.0.13...
CVE-2025-58598
Insertion of Sensitive Information Into Debugging Code vulnerability in Klarna Klarna Order Management for WooCommerce klarna-order-management-for-woocommerce allows Retrieve Embedded Sensitive Data.This issue affects Klarna Order Management for WooCommerce: from n/a through = 1.9.8...
CVE-2025-58802 WordPress TrustMate.io – WooCommerce integration plugin <= 1.16.0 - Cross Site Request Forgery (CSRF) vulnerability
Cross-Site Request Forgery CSRF vulnerability in michalzagdan TrustMate.io – WooCommerce integration trustmate-io-integration-for-woocommerce allows Cross Site Request Forgery.This issue affects TrustMate.io – WooCommerce integration: from n/a through = 1.16.0...
CVE-2025-58802 WordPress TrustMate.io – WooCommerce integration plugin <= 1.16.0 - Cross Site Request Forgery (CSRF) vulnerability
Cross-Site Request Forgery CSRF vulnerability in michalzagdan TrustMate.io – WooCommerce integration trustmate-io-integration-for-woocommerce allows Cross Site Request Forgery.This issue affects TrustMate.io – WooCommerce integration: from n/a through = 1.16.0...
CVE-2025-47610
CVE-2025-47610 affects WordPress plugin Fortnox for WooCommerce (Wetail WooCommerce Fortnox Integration) up to version 4.5.6. The vulnerability is a Stored XSS caused by improper input neutralization during web page generation. Impact is described as Cross-Site Scripting with low to moderate seve...
CVE-2025-49998 WordPress WooCommerce Fortnox Integration plugin <= 4.5.5 - Broken Access Control Vulnerability
Missing Authorization vulnerability in Wetail WooCommerce Fortnox Integration woocommerce-fortnox-integration allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WooCommerce Fortnox Integration: from n/a through = 4.5.5...