9 matches found
CVE-2024-31944
Cross-Site Request Forgery CSRF vulnerability in Octolize WooCommerce UPS Shipping – Live Rates and Access Points.This issue affects WooCommerce UPS Shipping – Live Rates and Access Points: from n/a through 2.2.4...
CVE-2024-9109
The WooCommerce UPS Shipping – Live Rates and Access Points plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the deleteoauthdata function in all versions up to, and including, 2.3.12. This makes it possible for authenticated attackers,...
CVE-2024-9109
The WooCommerce UPS Shipping – Live Rates and Access Points plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the deleteoauthdata function in all versions up to, and including, 2.3.11. This makes it possible for authenticated attackers,...
WordPress plugin WooCommerce UPS Shipping 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...
WordPress WooCommerce UPS Shipping – Live Rates and Access Points Plugin <= 2.3.11 is vulnerable to Broken Access Control
Software WooCommerce UPS Shipping – Live Rates and Access Points Type Plugin Vulnerable versions = 2.3.11 Fixed in 3.0.0 OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2024-9109 Patch priority Low CVSS severity Low 5.4 Developer Claim ownership PSID b3cccbff59...
CVE-2024-31944
Cross-Site Request Forgery CSRF vulnerability in Octolize WooCommerce UPS Shipping – Live Rates and Access Points.This issue affects WooCommerce UPS Shipping – Live Rates and Access Points: from n/a through 2.2.4...
CVE-2024-31944
CVE-2024-31944 is a Cross-Site Request Forgery (CSRF) vulnerability in the Octolize WooCommerce UPS Shipping – Live Rates and Access Points plugin for WooCommerce. Affected versions are listed as from n/a through 2.2.4. The CVSS metrics indicate a Network attack vector, no confidentiality/availab...
WordPress WooCommerce UPS Shipping plugin <= 2.2.4 - Cross Site Request Forgery (CSRF) vulnerability
Cross Site Request Forgery CSRF vulnerability discovered by Dhabaleshwar Das Patchstack Alliance in WordPress Plugin WooCommerce UPS Shipping – Live Rates and Access Points versions = 2.2.4...
WordPress WooCommerce UPS Shipping – Live Rates and Access Points Plugin <= 2.2.4 is vulnerable to Cross Site Request Forgery (CSRF)
Software WooCommerce UPS Shipping – Live Rates and Access Points Type Plugin Vulnerable versions = 2.2.4 Fixed in 2.2.5 OWASP Top 10 A1: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2024-31944 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID...