16 matches found
EUVD-2025-14738
Malicious code in bioql PyPI...
EUVD-2023-38459
Malicious code in bioql PyPI...
EUVD-2025-9485
Malicious code in bioql PyPI...
CVE-2025-31795
Missing Authorization vulnerability in Plugin Devs Shopify to WooCommerce Migration migrate-shopify-to-woocommerce allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Shopify to WooCommerce Migration: from n/a through = 1.3.0...
CVE-2025-30807
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Martin Nguyen Next-Cart Store to WooCommerce Migration nextcart-woocommerce-migration allows SQL Injection.This issue affects Next-Cart Store to WooCommerce Migration: from n/a through = 3.9.4...
CVE-2025-31795
CVE-2025-31795 affects SWM – Shopify to WooCommerce Migration. Vulnerability: Missing Authorization allows unauthenticated settings updates for versions from 1.0.0 up to 1.3.0 (from Initial Description: n/a through 1.3.0). Current status: patch not present in provided docs (Unpatched). References...
WordPress Shopify to WooCommerce Migration plugin <= 1.3.0 - Settings Change vulnerability
Settings Change vulnerability discovered by Mika in WordPress Plugin Shopify to WooCommerce Migration versions = 1.3.0...
CVE-2025-30807
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Martin Nguyen Next-Cart Store to WooCommerce Migration nextcart-woocommerce-migration allows SQL Injection.This issue affects Next-Cart Store to WooCommerce Migration: from n/a through = 3.9.4...
CVE-2025-30807 WordPress Next-Cart Store to WooCommerce Migration plugin <= 3.9.4 - SQL Injection vulnerability
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Martin Nguyen Next-Cart Store to WooCommerce Migration nextcart-woocommerce-migration allows SQL Injection.This issue affects Next-Cart Store to WooCommerce Migration: from n/a through = 3.9.4...
CVE-2025-30807
CVE-2025-30807 is a SQL Injection vulnerability in the Next-Cart Store to WooCommerce Migration WordPress plugin (affected: Next-Cart Store to WooCommerce Migration,
CVE-2025-30807 WordPress Next-Cart Store to WooCommerce Migration plugin <= 3.9.4 - SQL Injection vulnerability
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Martin Nguyen Next-Cart Store to WooCommerce Migration nextcart-woocommerce-migration allows SQL Injection.This issue affects Next-Cart Store to WooCommerce Migration: from n/a through = 3.9.4...
PT-2025-14392 · Unknown · Next-Cart Store To Woocommerce Migration
Name of the Vulnerable Software and Affected Versions: Next-Cart Store to WooCommerce Migration versions 3.9.4 and earlier Description: The issue is related to an SQL Injection vulnerability due to improper neutralization of special elements used in an SQL command. This allows for SQL Injection...
WordPress Next-Cart Store to WooCommerce Migration plugin <= 3.9.2 - Reflected Cross-Site Scripting vulnerability
Reflected Cross-Site Scripting vulnerability discovered by vgo0 in WordPress Plugin Next-Cart Store to WooCommerce Migration versions = 3.9.2...
CVE-2024-11687
CVE-2024-11687 concerns the WordPress plugin “Next-Cart Store to WooCommerce Migration” (versions up to and including 3.9.2). The connected sources confirm a Reflected Cross-Site Scripting (XSS) vulnerability triggered via the page parameter, caused by insufficient input sanitization and output e...
CVE-2024-11687 Next-Cart Store to WooCommerce Migration <= 3.9.2 - Reflected Cross-Site Scripting
The Next-Cart Store to WooCommerce Migration plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'page' parameter in all versions up to, and including, 3.9.2 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers t...
WordPress plugin Next-Cart Store to WooCommerce Migration 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports personal blog sites on servers running PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting vulnerability...