Lucene search
+L

8 matches found

ptsecurity
ptsecurity
added 2024/08/10 12:0 a.m.4 views

PT-2024-37409 · WordPress · Wp-Cart-For-Digital-Products

Name of the Vulnerable Software and Affected Versions: wp-cart-for-digital-products versions prior to 8.5.6 Description: The issue is related to a Reflected Cross-Site Scripting problem. It occurs because a parameter is not properly sanitised and escaped before being outputted back in the page...

5.4CVSS5.9AI score0.00378EPSS
Exploits1References5
ptsecurity
ptsecurity
added 2024/08/09 12:0 a.m.4 views

PT-2024-37411 · WordPress · Wp-Cart-For-Digital-Products

Name of the Vulnerable Software and Affected Versions: wp-cart-for-digital-products versions prior to 8.5.6 Description: The issue concerns the lack of CSRF checks in certain areas, potentially allowing attackers to trick logged-in users into performing unintended actions through CSRF attacks...

5.4CVSS6.5AI score0.00218EPSS
Exploits1References4
osv
osv
added 2024/07/15 6:15 a.m.5 views

CVE-2024-6076

The wp-cart-for-digital-products WordPress plugin before 8.5.5 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin...

6.1CVSS5.8AI score0.00416EPSS
Exploits1References1
cve
cve
added 2024/07/15 6:0 a.m.61 views

CVE-2024-6074

CVE-2024-6074 relates to the WordPress plugin wp-cart-for-digital-products (pre-8.5.5). The vulnerability is a Reflected XSS caused by failing to sanitize/escape a parameter before outputting it on the page, potentially exploitable against admin/high-privilege users. Affected versions:

6.1CVSS6.5AI score0.00336EPSS
Exploits1References1Affected Software1
cnnvd
cnnvd
added 2024/07/15 12:0 a.m.5 views

WordPress plugin wp-cart-for-digital-products security vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

6.1CVSS6.8AI score0.00336EPSS
Exploits1References2
ptsecurity
ptsecurity
added 2024/07/15 12:0 a.m.5 views

PT-2024-37368 · WordPress · Wp-Cart-For-Digital-Products

Name of the Vulnerable Software and Affected Versions: wp-cart-for-digital-products versions prior to 8.5.5 Description: The issue concerns a lack of CSRF checks in certain areas, potentially allowing attackers to trick logged-in users into performing unintended actions through CSRF attacks...

8.8CVSS7.1AI score0.00366EPSS
Exploits1References5
cnnvd
cnnvd
added 2024/07/15 12:0 a.m.4 views

WordPress plugin wp-cart-for-digital-products security vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

6.1CVSS6.8AI score0.00416EPSS
Exploits1References2
ptsecurity
ptsecurity
added 2024/07/15 12:0 a.m.6 views

PT-2024-37369 · WordPress · Wp-Cart-For-Digital-Products

Name of the Vulnerable Software and Affected Versions: wp-cart-for-digital-products versions prior to 8.5.5 Description: The issue is related to a Reflected Cross-Site Scripting problem, where a parameter is not properly sanitised and escaped before being outputted back in the page. This could be...

6.1CVSS6.5AI score0.00416EPSS
Exploits1References6
Rows per page
Query Builder