4 matches found
CVE-2025-58196
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in uicore UiCore Elements uicore-elements allows Stored XSS.This issue affects UiCore Elements: from n/a through = 1.3.4...
CVE-2025-22639
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Techspawn Distance Rate Shipping for WooCommerce distance-rate-shipping-for-woocommerce-pro allows Blind SQL Injection.This issue affects Distance Rate Shipping for WooCommerce: from n/a through =...
PT-2025-6952 · Woocommerce · Distance Rate Shipping For Woocommerce
Name of the Vulnerable Software and Affected Versions: Distance Rate Shipping for WooCommerce versions 1.3.4 and earlier Description: The issue is related to an SQL Injection vulnerability, specifically a Blind SQL Injection, due to the improper neutralization of special elements used in an SQL...
2cs (=1.0.0), @abhishekgaps1/ts-2 (>=1.0.0 <=1.0.1) +74 more potentially affected by CVE-2022-25940 via lite-server (>=1.3.4 <=2.6.1)
lite-server NPM version =1.3.4, =1.0.0, =2.21.0, =0.0.8, =1.2.3, =1.0.48, =1.2.0, =0.1.0, =0.0.2, =1.0.0, =0.2.0, =0.2.3 - angular-two =1.0.0 - angular2-flash-message =0.0.4 and more Source cves: CVE-2022-25940 Source advisory: OSV:GHSA-89W7-5Q45-R53W...