CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

21 matches found

RedhatCVE•added 2026/01/09 9:2 a.m.•2 views

CVE-2023-25960

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Zendrop Zendrop – Global Dropshipping zendrop-dropshipping-and-fulfillment allows SQL Injection.This issue affects Zendrop – Global Dropshipping: from n/a through 1.0.0...

10CVSS8.9AI score0.00275EPSS

Exploits0References1

RedhatCVE•added 2026/01/09 9:1 a.m.•3 views

CVE-2023-25970

Unrestricted Upload of File with Dangerous Type vulnerability in Zendrop Zendrop – Global Dropshipping.This issue affects Zendrop – Global Dropshipping: from n/a through 1.0.0...

9.8CVSS8.6AI score0.00313EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2023-29857

Malicious code in bioql PyPI...

10CVSS9.4AI score0.00313EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2023-29847

Malicious code in bioql PyPI...

10CVSS9.4AI score0.00275EPSS

Exploits0References1

NVD•added 2023/12/20 8:15 p.m.•10 views

CVE-2023-25970

Unrestricted Upload of File with Dangerous Type vulnerability in Zendrop Zendrop – Global Dropshipping.This issue affects Zendrop – Global Dropshipping: from n/a through 1.0.0...

9.8CVSS0.00313EPSS

Exploits0References1

OSV•added 2023/12/20 8:15 p.m.•1 views

CVE-2023-25970

Unrestricted Upload of File with Dangerous Type vulnerability in Zendrop Zendrop – Global Dropshipping.This issue affects Zendrop – Global Dropshipping: from n/a through 1.0.0...

9.8CVSS5.8AI score0.00313EPSS

Exploits0References1

Prion•added 2023/12/20 8:15 p.m.•13 views

Unrestricted file upload

Unrestricted Upload of File with Dangerous Type vulnerability in Zendrop Zendrop – Global Dropshipping.This issue affects Zendrop – Global Dropshipping: from n/a through 1.0.0...

7.5CVSS7.2AI score0.00313EPSS

Exploits0References1Affected Software1

Cvelist•added 2023/12/20 7:18 p.m.•12 views

CVE-2023-25970 WordPress Zendrop – Global Dropshipping Plugin <= 1.0.0 is vulnerable to Arbitrary File Upload

Unrestricted Upload of File with Dangerous Type vulnerability in Zendrop Zendrop – Global Dropshipping.This issue affects Zendrop – Global Dropshipping: from n/a through 1.0.0...

9.8CVSS9.7AI score0.00313EPSS

Exploits0References1

CVE•added 2023/12/20 7:18 p.m.•26 views

CVE-2023-25970

CVE-2023-25970 affects the WordPress plugin Zendrop – Global Dropshipping (versions

9.8CVSS8.6AI score0.00313EPSS

Exploits0References1Affected Software1

Positive Technologies•added 2023/12/20 12:0 a.m.•2 views

PT-2023-20395 · Unknown · Zendrop – Global Dropshipping

Name of the Vulnerable Software and Affected Versions: Zendrop – Global Dropshipping versions 1.0.0 and earlier Description: The issue is related to an Unrestricted Upload of File with Dangerous Type, which affects Zendrop – Global Dropshipping. This allows for the upload of files with potentiall...

10CVSS9.3AI score0.00313EPSS

Exploits0References4

CNNVD•added 2023/12/20 12:0 a.m.•1 views

WordPress Plugin Zendrop Code Issue Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A code issue vulnerability...

10CVSS6.8AI score0.00313EPSS

Exploits0References3

OSV•added 2023/11/03 1:15 p.m.•1 views

CVE-2023-25960

9.8CVSS7.3AI score

Exploits0References1

NVD•added 2023/11/03 1:15 p.m.•9 views

CVE-2023-25960

10CVSS9.9AI score0.00275EPSS

Exploits0References1

Prion•added 2023/11/03 1:15 p.m.•16 views

Sql injection

7.5CVSS9.7AI score0.00275EPSS

Exploits0References1Affected Software1

CVE•added 2023/11/03 12:23 p.m.•124 views

CVE-2023-25960

CVE-2023-25960 pertains to the WordPress plugin Zendrop – Global Dropshipping (

10CVSS8.9AI score0.00275EPSS

Exploits0References1Affected Software1

Vulnrichment•added 2023/11/03 12:23 p.m.•14 views

CVE-2023-25960 WordPress Zendrop – Global Dropshipping Plugin <= 1.0.0 is vulnerable to SQL Injection

10CVSS7.9AI score0.00275EPSS

Exploits0References1

Cvelist•added 2023/11/03 12:23 p.m.•13 views

CVE-2023-25960 WordPress Zendrop – Global Dropshipping Plugin <= 1.0.0 is vulnerable to SQL Injection

10CVSS10AI score0.00275EPSS

Exploits0References1

CNNVD•added 2023/11/03 12:0 a.m.•1 views

WordPress Plugin Zendrop - Global Dropshipping SQL Injection Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. WordPress Plugin Zendrop - Global...

10CVSS7.7AI score0.00275EPSS

Exploits0References2

Positive Technologies•added 2023/11/03 12:0 a.m.•3 views

PT-2023-20387 · Zendrop · Zendrop

Name of the Vulnerable Software and Affected Versions: Zendrop – Global Dropshipping versions n/a through 1.0.0 Description: The issue is related to an SQL Injection vulnerability due to improper neutralization of special elements used in an SQL command. This allows for SQL Injection attacks. The...

10CVSS9.5AI score0.00275EPSS

Exploits0References5

Patchstack•added 2023/02/24 12:0 a.m.•7 views

WordPress Zendrop – Global Dropshipping Plugin <= 1.0.0 is vulnerable to Arbitrary File Upload

Software Zendrop – Global Dropshipping Type Plugin Vulnerable versions = 1.0.0 Fixed in 1.0.1 OWASP Top 10 A2: Broken Authentication Classification Arbitrary File Upload CVE CVE-2023-25970 Patch priority High CVSS severity High 10 Developer Claim ownership PSID 180f30af21a8 Credits Dave Jong...

10CVSS6.8AI score0.00313EPSS

Exploits0References2Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by