19 matches found
EUVD-2025-25163
Malicious code in bioql PyPI...
CVE-2025-58201
Missing Authorization vulnerability in AfterShip & Automizely AfterShip Tracking aftership-woocommerce-tracking allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects AfterShip Tracking: from n/a through = 1.17.17...
WordPress AfterShip Tracking Plugin <= 1.17.17 - Broken Access Control Vulnerability
Broken Access Control Vulnerability discovered by ch4r0n in WordPress Plugin AfterShip Tracking versions = 1.17.17...
CVE-2025-58201
Missing Authorization vulnerability in AfterShip & Automizely AfterShip Tracking aftership-woocommerce-tracking allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects AfterShip Tracking: from n/a through = 1.17.17...
CVE-2025-58201
CVE-2025-58201 concerns the WordPress plugin AfterShip Tracking (free plan) up to version 1.17.17 . The issue is a Missing Authorization / Broken Access Control vulnerability that permits access to functionality not properly constrained by ACLs. Public sources in the connected documents confirm: ...
CVE-2025-58201 WordPress AfterShip Tracking Plugin <= 1.17.17 - Broken Access Control Vulnerability
Missing Authorization vulnerability in AfterShip & Automizely AfterShip Tracking aftership-woocommerce-tracking allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects AfterShip Tracking: from n/a through = 1.17.17...
CVE-2025-58201
Missing Authorization vulnerability in AfterShip & Automizely AfterShip Tracking aftership-woocommerce-tracking allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects AfterShip Tracking: from n/a through = 1.17.17...
CVE-2025-58201 WordPress AfterShip Tracking Plugin <= 1.17.17 - Broken Access Control Vulnerability
Missing Authorization vulnerability in AfterShip & Automizely AfterShip Tracking aftership-woocommerce-tracking allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects AfterShip Tracking: from n/a through = 1.17.17...
WordPress plugin AfterShip Tracking 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...
PT-2025-34915 · Aftership · Aftership Tracking
Name of the Vulnerable Software and Affected Versions: AfterShip Tracking versions n/a through 1.17.17 Description: A missing authorization flaw exists in AfterShip Tracking, allowing access to functionality not properly restricted by Access Control Lists ACLs. Recommendations: Update AfterShip...
CVE-2025-9134
A security vulnerability has been detected in AfterShip Package Tracker App up to 5.24.1 on Android. The affected element is an unknown function of the file AndroidManifest.xml of the component com.aftership.AfterShip. The manipulation leads to improper export of android application components. T...
CVE-2025-9134
A security vulnerability has been detected in AfterShip Package Tracker App up to 5.24.1 on Android. The affected element is an unknown function of the file AndroidManifest.xml of the component com.aftership.AfterShip. The manipulation leads to improper export of android application components. T...
CVE-2025-9134
A security vulnerability has been detected in AfterShip Package Tracker App up to 5.24.1 on Android. The affected element is an unknown function of the file AndroidManifest.xml of the component com.aftership.AfterShip. The manipulation leads to improper export of android application components. T...
CVE-2025-9134
CVE-2025-9134 affects AfterShip Package Tracker App (Android) up to version 5.24.1, where an unknown function in the AndroidManifest.xml of the com.aftership.AfterShip component allows improper export of Android app components. The issue enables local attack execution; public exploit information ...
CVE-2025-9134 AfterShip Package Tracker App com.aftership.AfterShip AndroidManifest.xml improper export of android application components
A security vulnerability has been detected in AfterShip Package Tracker App up to 5.24.1 on Android. The affected element is an unknown function of the file AndroidManifest.xml of the component com.aftership.AfterShip. The manipulation leads to improper export of android application components. T...
PT-2025-33718 · Aftership · Aftership Package Tracker App
Name of the Vulnerable Software and Affected Versions: AfterShip Package Tracker App versions through 5.24.1 Description: A security vulnerability has been detected in AfterShip Package Tracker App on Android. The affected element is an unknown function within the AndroidManifest.xml file of the...
AfterShip Package Tracker App 安全漏洞
AfterShip Package Tracker App is a courier tracking app by AfterShip Singapore. A security vulnerability exists in AfterShip Package Tracker App version 5.24.1 and earlier, which stems from an improperly exported AndroidManifest.xml component and could lead to a local attack...
Takeover v0.2 - Sub-Domain TakeOver Vulnerability Scanner
Sub-domain takeover vulnerability occur when a sub-domain subdomain.example.com is pointing to a service e.g: GitHub , AWS/S3 ,.. that has been removed or deleted. This allows an attacker to set up a page on the service that was being used and point their page to that sub-domain. For example, if...
AfterShip Package Tracker - Customized SSL, Dangerous filesystem permissions vulnerabilities
HackApp vulnerability scanner discovered that application AfterShip Package Tracker published at the 'play' market has multiple vulnerabilities...