Lucene search
K

4 matches found

CNNVD
CNNVD
added 2025/11/18 12:0 a.m.2 views

WordPress plugin Live sales notification for WooCommerce 安全漏洞

WordPress Live sales notification for WooCommerce plugin is a real-time sales notification tool designed for WooCommerce e-commerce platform, which displays recent purchases through pop-ups, and utilizes social proof to boost user trust and conversion rates. The WordPress Live sales notification...

7.5CVSS6.2AI score0.00273EPSS
Exploits0References2
WPVulnDB
WPVulnDB
added 2022/03/21 12:0 a.m.26 views

Salon booking system < 7.6.3 - Customer+ Bookings/Customers Data Disclosure

The plugin does not have proper authorisation in some of its endpoints, which could allow customers to access all bookings and other customer's data PoC Make a booking to get a customer account Login via API and get access token: curl...

7.5CVSS0.9AI score0.01431EPSS
Exploits2Affected Software2
Positive Technologies
Positive Technologies
added 2018/12/13 12:0 a.m.5 views

PT-2018-10991 · Avanti Markets · Marketcard

Name of the Vulnerable Software and Affected Versions: Avanti Markets MarketCard affected versions not specified Description: A vulnerability exists due to the lack of proper validation of the UPC bar code on the MarketCard. This could allow an unauthenticated, local attacker to access funds with...

4.2CVSS4.3AI score0.00276EPSS
Exploits0References2
Prion
Prion
added 2018/06/06 8:29 p.m.14 views

Code injection

An issue was discovered in OTRS 6.0.x before 6.0.7. An attacker who is logged into OTRS as a customer can use the ticket overview screen to disclose internal article information of their customer tickets...

4CVSS4.3AI score0.00954EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder