EUVD-2024-30605

Malicious code in bioql PyPI...

CVE-2024-32819

Server-Side Request Forgery SSRF vulnerability in Culqi.This issue affects Culqi: from n/a through 3.0.14...

Culqi < 3.0.15 - Authenticated (Subscriber+) Server-Side Request Forgery

Description The Culqi plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 3.0.14 via the getmerchants function. This makes it possible for authenticated attackers, with subscriber-level access and above, to make web requests to arbitrary locatio...

CVE-2024-32819

Server-Side Request Forgery SSRF vulnerability in Culqi.This issue affects Culqi: from n/a through 3.0.14...

CVE-2024-32819 WordPress Culqi plugin <= 3.0.14 - Server Side Request Forgery (SSRF) vulnerability

Server-Side Request Forgery SSRF vulnerability in Culqi.This issue affects Culqi: from n/a through 3.0.14...

CVE-2024-32819

CVE-2024-32819 is a Server-Side Request Forgery in Culqi Checkout for WordPress. Affected: Culqi Checkout plugin up to version 3.0.14; attack requires Subscriber+ privileges (authenticated). Root cause: SSRF via the plugin’s handling of remote requests. Remediation: upgrade to a fixed version (th...

CVE-2024-32819 WordPress Culqi plugin <= 3.0.14 - Server Side Request Forgery (SSRF) vulnerability

Server-Side Request Forgery SSRF vulnerability in Culqi.This issue affects Culqi: from n/a through 3.0.14...

WordPress plugin Culqi 代码问题漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A code issue vulnerability...

PT-2024-24893 · Culqi · Culqi

Name of the Vulnerable Software and Affected Versions: Culqi versions 3.0.14 and earlier Description: A Server-Side Request Forgery SSRF issue affects the software, allowing for potential unauthorized access to internal resources. Recommendations: For versions 3.0.14 and earlier, update to a...

WordPress Culqi plugin <= 3.0.14 - Server Side Request Forgery (SSRF) vulnerability

Server Side Request Forgery SSRF vulnerability discovered by Majed Refaea Patchstack Alliance in WordPress Plugin Culqi versions = 3.0.14...

WordPress Culqi Plugin <= 3.0.14 is vulnerable to Server Side Request Forgery (SSRF)

Software Culqi Type Plugin Vulnerable versions = 3.0.14 Fixed in 3.0.15 OWASP Top 10 A10: Server-Side Request Forgery SSRF Classification Server Side Request Forgery SSRF CVE CVE-2024-32819 Patch priority Low CVSS severity Low 4.9 Developer Claim ownership PSID 7fa7358f041a Credits Majed Refaea...

BiliupApi (>=0.1.0 <=0.1.7), BrandoCulqi (=1.0.1) +338 more potentially affected by CVE-2023-49092 via rsa (>=0.1.2 <=0.8.2)

rsa CARGO version =0.1.2, =0.1.0, =1.0.0, =1.0.1, =0.0.1, =0.12.0, =0.5.0, =0.2.0, =0.1.0, =1.0.1, =0.1.0, =0.3.11, =0.3.21 and more Source cves: CVE-2023-49092 Source advisory: OSV:GHSA-C38W-74PG-36HR...

BiliupApi (>=0.1.0 <=0.1.7), BrandoCulqi (=1.0.1) +338 more potentially affected by CVE-2023-49092 via rsa (>=0.1.2 <=0.8.2)

rsa CARGO version =0.1.2, =0.1.0, =1.0.0, =1.0.1, =0.0.1, =0.12.0, =0.5.0, =0.2.0, =0.1.0, =1.0.1, =0.1.0, =0.3.11, =0.3.21 and more Source cves: CVE-2023-49092 Source advisory: OSV:GHSA-4GRX-2X9W-596C...

BrandoCulqi (=1.0.1), IMAPServer (=0.1.0) +2300 more potentially affected by unknown CVE via lexical-core (>=0.1.3 <=0.8.5)

lexical-core CARGO version =0.1.3, =1.0.0, =1.0.1, =0.10.0-dev0, =0.2.0, =0.1.0, =0.2.0, =0.1.1, =0.5.1, =0.1.0, =0.1.0, =0.2.0, =0.3.0 and more Source cves: unknown CVE Source advisory: OSV:RUSTSEC-2023-0086...