25 matches found
CVE-2026-27040
Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in AA-Team WZone woozone allows Path Traversal.This issue affects WZone: from n/a through = 14.0.31...
PT-2026-27963
Name of the Vulnerable Software and Affected Versions AA-Team WZone woozone versions through 14.0.31 Description A flaw exists in AA-Team WZone woozone that allows for path traversal. This issue is due to improper limitation of a pathname to a restricted directory. The vulnerability could...
CVE-2026-25473
Missing Authorization vulnerability in AA-Team WZone woozone allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WZone: from n/a through = 14.0.31...
EUVD-2024-31284
Malicious code in bioql PyPI...
EUVD-2024-31285
Malicious code in bioql PyPI...
EUVD-2024-31286
Malicious code in bioql PyPI...
EUVD-2024-31281
Malicious code in bioql PyPI...
EUVD-2024-31282
Malicious code in bioql PyPI...
EUVD-2024-31283
Malicious code in bioql PyPI...
CVE-2024-33545
Missing Authorization vulnerability in AA-Team WZone.This issue affects WZone: from n/a through 14.0.10...
CVE-2024-33546
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in AA-Team WZone allows SQL Injection.This issue affects WZone: from n/a through 14.0.10...
CVE-2024-33547
Missing Authorization vulnerability in AA-Team WZone.This issue affects WZone: from n/a through 14.0.10...
CVE-2024-33549
Improper Privilege Management vulnerability in AA-Team WZone allows Privilege Escalation.This issue affects WZone: from n/a through 14.0.10...
CVE-2024-33547
Missing Authorization vulnerability in AA-Team WZone.This issue affects WZone: from n/a through 14.0.10...
CVE-2024-33545
Missing Authorization vulnerability in AA-Team WZone.This issue affects WZone: from n/a through 14.0.10...
CVE-2024-33544
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in AA-Team WZone allows SQL Injection.This issue affects WZone: from n/a through 14.0.10...
CVE-2024-33544
CVE-2024-33544 is an unauthenticated SQL injection in the WooCommerce Amazon Affiliates plugin (WooZone) for WordPress, affecting versions up to 14.0.10. The vulnerability stems from improper neutralization of input in SQL commands, enabling potential arbitrary database access. The provided conne...
CVE-2024-33546
CVE-2024-33546 is an unauthenticated SQL Injection in the WooCommerce Amazon Affiliates/WooZone plugin for WordPress, affecting WZone up to version 14.0.10. The CVSS v3.1 base vector indicates network access (AV:N) with low attack complexity (AC:L) and requires low privileges (PR:L) with no user ...
CVE-2024-33548 WordPress WZone plugin <= 14.0.10 - Reflected Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in AA-Team WZone allows Reflected XSS.This issue affects WZone: from n/a through 14.0.10...
CVE-2024-33548
CVE-2024-33548 affects WooCommerce Amazon Affiliates (WooZone) WordPress plugin