Lucene search
K

25 matches found

NVD
NVD
added 2026/03/25 5:16 p.m.1 views

CVE-2026-27040

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in AA-Team WZone woozone allows Path Traversal.This issue affects WZone: from n/a through = 14.0.31...

8.8CVSS0.00382EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/03/25 12:0 a.m.4 views

PT-2026-27963

Name of the Vulnerable Software and Affected Versions AA-Team WZone woozone versions through 14.0.31 Description A flaw exists in AA-Team WZone woozone that allows for path traversal. This issue is due to improper limitation of a pathname to a restricted directory. The vulnerability could...

8.8CVSS5.9AI score0.00382EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/02/20 1:27 p.m.4 views

CVE-2026-25473

Missing Authorization vulnerability in AA-Team WZone woozone allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WZone: from n/a through = 14.0.31...

5.4CVSS5.5AI score0.0017EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-31284

Malicious code in bioql PyPI...

8.8CVSS6.4AI score0.00387EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.1 views

EUVD-2024-31285

Malicious code in bioql PyPI...

7.1CVSS6.5AI score0.00375EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-31286

Malicious code in bioql PyPI...

8.8CVSS6.5AI score0.00512EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.1 views

EUVD-2024-31281

Malicious code in bioql PyPI...

9.3CVSS6.4AI score0.00629EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-31282

Malicious code in bioql PyPI...

9.8CVSS6.4AI score0.00365EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-31283

Malicious code in bioql PyPI...

9.6CVSS6.5AI score0.00529EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 8:39 a.m.20 views

CVE-2024-33545

Missing Authorization vulnerability in AA-Team WZone.This issue affects WZone: from n/a through 14.0.10...

9.8CVSS6.9AI score0.00365EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/05 2:45 a.m.10 views

CVE-2024-33546

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in AA-Team WZone allows SQL Injection.This issue affects WZone: from n/a through 14.0.10...

9.6CVSS5.6AI score0.00529EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/05 2:41 a.m.12 views

CVE-2024-33547

Missing Authorization vulnerability in AA-Team WZone.This issue affects WZone: from n/a through 14.0.10...

8.8CVSS6.9AI score0.00387EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/05 2:34 a.m.5 views

CVE-2024-33549

Improper Privilege Management vulnerability in AA-Team WZone allows Privilege Escalation.This issue affects WZone: from n/a through 14.0.10...

8.8CVSS6.9AI score0.00512EPSS
Exploits0References1
NVD
NVD
added 2024/06/09 12:15 p.m.19 views

CVE-2024-33547

Missing Authorization vulnerability in AA-Team WZone.This issue affects WZone: from n/a through 14.0.10...

8.8CVSS0.00387EPSS
Exploits0References1
OSV
OSV
added 2024/06/09 12:15 p.m.5 views

CVE-2024-33545

Missing Authorization vulnerability in AA-Team WZone.This issue affects WZone: from n/a through 14.0.10...

9.8CVSS5.8AI score0.00365EPSS
Exploits0References1
NVD
NVD
added 2024/04/29 7:15 a.m.20 views

CVE-2024-33544

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in AA-Team WZone allows SQL Injection.This issue affects WZone: from n/a through 14.0.10...

9.3CVSS9.7AI score0.00629EPSS
Exploits0References1
CVE
CVE
added 2024/04/29 6:14 a.m.84 views

CVE-2024-33544

CVE-2024-33544 is an unauthenticated SQL injection in the WooCommerce Amazon Affiliates plugin (WooZone) for WordPress, affecting versions up to 14.0.10. The vulnerability stems from improper neutralization of input in SQL commands, enabling potential arbitrary database access. The provided conne...

9.3CVSS5.5AI score0.00629EPSS
Exploits0References1
CVE
CVE
added 2024/04/29 6:12 a.m.75 views

CVE-2024-33546

CVE-2024-33546 is an unauthenticated SQL Injection in the WooCommerce Amazon Affiliates/WooZone plugin for WordPress, affecting WZone up to version 14.0.10. The CVSS v3.1 base vector indicates network access (AV:N) with low attack complexity (AC:L) and requires low privileges (PR:L) with no user ...

9.6CVSS5.6AI score0.00529EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/04/29 5:17 a.m.10 views

CVE-2024-33548 WordPress WZone plugin <= 14.0.10 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in AA-Team WZone allows Reflected XSS.This issue affects WZone: from n/a through 14.0.10...

7.1CVSS6.9AI score0.00375EPSS
Exploits0References1
CVE
CVE
added 2024/04/29 5:17 a.m.52 views

CVE-2024-33548

CVE-2024-33548 affects WooCommerce Amazon Affiliates (WooZone) WordPress plugin

7.1CVSS5.2AI score0.00375EPSS
Exploits0References1
Rows per page
Query Builder