14 matches found
CVE-2024-2395
The Bulgarisation for WooCommerce plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 3.0.14. This is due to missing or incorrect nonce validation on several functions. This makes it possible for unauthenticated attackers to generate and delete...
CVE-2024-0683
The Bulgarisation for WooCommerce plugin for WordPress is vulnerable to unauthorized access due to missing capability checks on several functions in all versions up to, and including, 3.0.14. This makes it possible for unauthenticated and authenticated attackers, with subscriber-level access and...
CVE-2024-0683
The Bulgarisation for WooCommerce plugin for WordPress is vulnerable to unauthorized access due to missing capability checks on several functions in all versions up to, and including, 3.0.14. This makes it possible for unauthenticated and authenticated attackers, with subscriber-level access and...
Design/Logic Flaw
The Bulgarisation for WooCommerce plugin for WordPress is vulnerable to unauthorized access due to missing capability checks on several functions in all versions up to, and including, 3.0.14. This makes it possible for unauthenticated and authenticated attackers, with subscriber-level access and...
CVE-2024-0683
CVE-2024-0683 concerns Bulgarisation for WooCommerce, a WordPress plugin, with unauthorized access due to missing capability checks across several functions in all versions up to 3.0.14. The Red Hat advisory and Wordfence vulnerability entry confirm that both unauthenticated users and authenticat...
CVE-2024-0683 Bulgarisation for WooCommerce <= 3.0.14 - Missing Authorization
The Bulgarisation for WooCommerce plugin for WordPress is vulnerable to unauthorized access due to missing capability checks on several functions in all versions up to, and including, 3.0.14. This makes it possible for unauthenticated and authenticated attackers, with subscriber-level access and...
WordPress Plugin Bulgarisation for WooCommerce Security Vulnerability
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A security vulnerability exists in WordPres...
CVE-2024-2395
The Bulgarisation for WooCommerce plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 3.0.14. This is due to missing or incorrect nonce validation on several functions. This makes it possible for unauthenticated attackers to generate and delete...
CVE-2024-2395
CVE-2024-2395 : Bulgarisation for WooCommerce (WordPress) is affected by a CSRF vulnerability due to missing/incorrect nonce validation in multiple functions, enabling unauthenticated attackers to forge requests to generate/delete labels if a site admin is induced to click a link. This vulnerabil...
CVE-2024-2395 Bulgarisation for WooCommerce <= 3.0.14 - Cross-Site Request Forgery
The Bulgarisation for WooCommerce plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 3.0.14. This is due to missing or incorrect nonce validation on several functions. This makes it possible for unauthenticated attackers to generate and delete...
CVE-2024-2395 Bulgarisation for WooCommerce <= 3.0.14 - Cross-Site Request Forgery
The Bulgarisation for WooCommerce plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 3.0.14. This is due to missing or incorrect nonce validation on several functions. This makes it possible for unauthenticated attackers to generate and delete...
WordPress Plugin Bulgarisation for WooCommerce Security Vulnerability
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A security vulnerability exists in WordPres...
Bulgarisation for WooCommerce < 3.0.15 - Missing Authorization
Description The Bulgarisation for WooCommerce plugin for WordPress is vulnerable to unauthorized access due to missing capability checks on several functions in all versions up to, and including, 3.0.14. This makes it possible for unauthenticated and authenticated attackers, with subscriber-level...
PT-2024-20196 · WordPress · Bulgarisation For Woocommerce
Name of the Vulnerable Software and Affected Versions: Bulgarisation for WooCommerce plugin for WordPress versions up to, and including, 3.0.14 Description: The issue is due to missing or incorrect nonce validation on several functions, making it possible for unauthenticated attackers to generate...