Lucene search
K

7 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-31235

Malicious code in bioql PyPI...

7.1CVSS6.5AI score0.00108EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/09/27 8:44 a.m.6 views

CVE-2025-60171

Cross-Site Request Forgery CSRF vulnerability in yourplugins Conditional Cart Messages for WooCommerce - YourPlugins.com yourplugins-wc-conditional-cart-notices allows Stored XSS.This issue affects Conditional Cart Messages for WooCommerce - YourPlugins.com: from n/a through = 1.2.10...

7.1CVSS5.9AI score0.00108EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/09/26 8:32 a.m.4 views

CVE-2025-60171 WordPress Conditional Cart Messages for WooCommerce – YourPlugins.com Plugin <= 1.2.10 - Cross Site Request Forgery (CSRF) Vulnerability

Cross-Site Request Forgery CSRF vulnerability in yourplugins Conditional Cart Messages for WooCommerce – YourPlugins.com yourplugins-wc-conditional-cart-notices allows Stored XSS.This issue affects Conditional Cart Messages for WooCommerce – YourPlugins.com: from n/a through = 1.2.10...

7.1CVSS5.2AI score0.00108EPSS
Exploits0References1
CVE
CVE
added 2025/09/26 8:32 a.m.15 views

CVE-2025-60171

CVE-2025-60171 is a CSRF vulnerability in Conditional Cart Messages for WooCommerce – YourPlugins.com that enables Stored XSS in versions up to 1.2.10 (affected: n/a–1.2.10). CVSSv3.1 base score 7.1 (HIGH); Vectors: NETWORK; privileges required: NONE; user interaction: REQUIRED; impacts: Confiden...

7.1CVSS5.2AI score0.00108EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/09/26 12:0 a.m.9 views

WordPress plugin Conditional Cart Messages for WooCommerce 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. WordPress plugin is an application plugin that provides the ability to host a personal blog site on a PHP and MySQL based server. A cross-site request...

7.1CVSS5.9AI score0.00108EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/09/26 12:0 a.m.6 views

PT-2025-39612

Name of the Vulnerable Software and Affected Versions Conditional Cart Messages for WooCommerce versions through 1.2.10 Description A Cross-Site Request Forgery CSRF issue exists that also allows Stored Cross-Site Scripting XSS. The issue is present in yourplugins Conditional Cart Messages for...

7.1CVSS5.7AI score0.00108EPSS
Exploits0References4
Patchstack
Patchstack
added 2019/10/31 12:0 a.m.21 views

WordPress YITH WooCommerce Cart Messages plugin <=1.4.4 - Authenticated Settings Change (YITH Plugin Framework <=3.3.8) vulnerability

Authenticated Settings Change YITH Plugin Framework =3.3.8 vulnerability found by Jerome Bruandet in WordPress YITH WooCommerce Cart Messages plugin versions =1.4.4. Solution Update the WordPress YITH WooCommerce Cart Messages plugin to the latest available version at least 1.4.5...

4.3CVSS3AI score0.00948EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder