47 matches found
WordPress plugin Coinbase Commerce for Contact Form 7 安全漏洞
WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows users to create personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that extends the...
CVE-2026-39671 WordPress Extra Fees Plugin for WooCommerce plugin <= 4.3.3 - Cross Site Request Forgery (CSRF) vulnerability
Cross-Site Request Forgery CSRF vulnerability in Dotstore Extra Fees Plugin for WooCommerce woo-conditional-product-fees-for-checkout allows Cross Site Request Forgery.This issue affects Extra Fees Plugin for WooCommerce: from n/a through = 4.3.3...
CVE-2026-0926
Prodigy Commerce WordPress plugin
CVE-2026-0926 Prodigy Commerce <= 3.3.0 - Unauthenticated Local File Inclusion via parameters[template_name]
The Prodigy Commerce plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 3.3.0 via the 'parameterstemplatename' parameter. This makes it possible for unauthenticated attackers to include and read arbitrary files or execute arbitrary files on the server...
MAL-2025-191451 Malicious code in @devx-commerce/plugin-discounts (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 74de4ea6b81994c916a9fecaea82b1fa9c5a8bf24ad75dc6c755122b821ec169 The package @devx-commerce/plugin-discounts was found to contain malicious code. Source: ghsa-malware...
WordPress plugin Welcart e-Commerce 安全漏洞
WordPress Welcart e-Commerce Plugin is an e-commerce plugin designed for WordPress to build and manage online stores. WordPress Welcart e-Commerce Plugin suffers from an unauthorized access vulnerability that stems from a lack of capability checking in the uscesexport operation, which can be...
EUVD-2016-5810
Malware in sbrugna...
EUVD-2008-6771
Malware in sbrugna...
EUVD-2023-44630
Malicious code in bioql PyPI...
EUVD-2023-50844
Malicious code in bioql PyPI...
EUVD-2022-51595
Malicious code in bioql PyPI...
EUVD-2025-13654
Malicious code in bioql PyPI...
EUVD-2025-13657
Malicious code in bioql PyPI...
EUVD-2025-1727
Malicious code in bioql PyPI...
EUVD-2024-16469
Malicious code in bioql PyPI...
EUVD-2023-46350
Malicious code in bioql PyPI...
EUVD-2023-26834
Malicious code in bioql PyPI...
CVE-2015-10135
The WPshop 2 – E-Commerce plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the ajaxUpload function in versions before 1.3.9.6. This makes it possible for unauthenticated attackers to upload arbitrary files on the affected sites server which may...
CVE-2023-41858
Cross-Site Request Forgery CSRF vulnerability in Ashok Rane Order Delivery Date for WP e-Commerce plugin = 1.2 versions...
CVE-2023-41859
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Ashok Rane Order Delivery Date for WP e-Commerce plugin = 1.2 versions...