Lucene search
K

47 matches found

CNNVD
CNNVD
added 2026/05/12 12:0 a.m.9 views

WordPress plugin Coinbase Commerce for Contact Form 7 安全漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows users to create personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that extends the...

4.3CVSS5.8AI score0.00208EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/04/08 8:30 a.m.24 views

CVE-2026-39671 WordPress Extra Fees Plugin for WooCommerce plugin <= 4.3.3 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in Dotstore Extra Fees Plugin for WooCommerce woo-conditional-product-fees-for-checkout allows Cross Site Request Forgery.This issue affects Extra Fees Plugin for WooCommerce: from n/a through = 4.3.3...

7.1CVSS0.00102EPSS
Exploits0References1
CVE
CVE
added 2026/02/19 4:36 a.m.22 views

CVE-2026-0926

Prodigy Commerce WordPress plugin

9.8CVSS6.5AI score0.09396EPSS
Exploits5References6
Cvelist
Cvelist
added 2026/02/19 4:36 a.m.285 views

CVE-2026-0926 Prodigy Commerce <= 3.3.0 - Unauthenticated Local File Inclusion via parameters[template_name]

The Prodigy Commerce plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 3.3.0 via the 'parameterstemplatename' parameter. This makes it possible for unauthenticated attackers to include and read arbitrary files or execute arbitrary files on the server...

9.8CVSS0.09396EPSS
Exploits5References6
OSV
OSV
added 2025/11/24 11:37 p.m.2 views

MAL-2025-191451 Malicious code in @devx-commerce/plugin-discounts (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 74de4ea6b81994c916a9fecaea82b1fa9c5a8bf24ad75dc6c755122b821ec169 The package @devx-commerce/plugin-discounts was found to contain malicious code. Source: ghsa-malware...

6.8AI score
Exploits0References1
CNNVD
CNNVD
added 2025/11/13 12:0 a.m.4 views

WordPress plugin Welcart e-Commerce 安全漏洞

WordPress Welcart e-Commerce Plugin is an e-commerce plugin designed for WordPress to build and manage online stores. WordPress Welcart e-Commerce Plugin suffers from an unauthorized access vulnerability that stems from a lack of capability checking in the uscesexport operation, which can be...

5.3CVSS6.3AI score0.00213EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2016-5810

Malware in sbrugna...

6.5CVSS6.5AI score0.01772EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2008-6771

Malware in sbrugna...

6.8CVSS6.4AI score0.07097EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2023-44630

Malicious code in bioql PyPI...

5.9CVSS6.4AI score0.00316EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2023-50844

Malicious code in bioql PyPI...

4.8CVSS6.4AI score0.00394EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-51595

Malicious code in bioql PyPI...

8.8CVSS8.4AI score0.01073EPSS
Exploits2References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-13654

Malicious code in bioql PyPI...

8.8CVSS9AI score0.00359EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-13657

Malicious code in bioql PyPI...

6.5CVSS7.2AI score0.00205EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-1727

Malicious code in bioql PyPI...

7.2CVSS8.7AI score0.00331EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-16469

Malicious code in bioql PyPI...

6.5CVSS7AI score0.00446EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2023-46350

Malicious code in bioql PyPI...

5.9CVSS6.4AI score0.00316EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2023-26834

Malicious code in bioql PyPI...

7.1CVSS6.4AI score0.00431EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/07/21 10:11 a.m.5 views

CVE-2015-10135

The WPshop 2 – E-Commerce plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the ajaxUpload function in versions before 1.3.9.6. This makes it possible for unauthenticated attackers to upload arbitrary files on the affected sites server which may...

9.8CVSS7.6AI score0.02764EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 5:13 a.m.13 views

CVE-2023-41858

Cross-Site Request Forgery CSRF vulnerability in Ashok Rane Order Delivery Date for WP e-Commerce plugin = 1.2 versions...

8.8CVSS7.1AI score0.00214EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 5:13 a.m.11 views

CVE-2023-41859

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Ashok Rane Order Delivery Date for WP e-Commerce plugin = 1.2 versions...

5.9CVSS5.6AI score0.00316EPSS
Exploits0References1
Rows per page
Query Builder