Lucene search
K

6 matches found

RedhatCVE
RedhatCVE
added 2025/02/16 6:21 a.m.13 views

CVE-2024-13641

The Return Refund and Exchange For WooCommerce – Return Management System, RMA Exchange, Wallet And Cancel Order Features plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 4.4.5 via the 'attachment' directory. This makes it possible for...

7.5CVSS9.3AI score0.00437EPSS
Exploits0References1
NVD
NVD
added 2025/02/14 6:15 a.m.25 views

CVE-2024-13641

The Return Refund and Exchange For WooCommerce – Return Management System, RMA Exchange, Wallet And Cancel Order Features plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 4.4.5 via the 'attachment' directory. This makes it possible for...

7.5CVSS0.00437EPSS
Exploits0References3
Circl
Circl
added 2025/02/14 5:25 a.m.14 views

CVE-2024-13641

creationtimestamp| type| source ---|---|--- 2025-02-14 05:25:18+00:00| seen| https://infosec.exchange/users/cve/statuses/114000574432565372 2025-02-14 06:16:15+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3li4kiefipn2c 2025-02-14 07:09:55+00:00| seen|...

7.5CVSS8.7AI score0.00437EPSS
Exploits0References6
Cvelist
Cvelist
added 2025/02/14 5:22 a.m.22 views

CVE-2024-13641 Return Refund and Exchange For WooCommerce <= 4.4.5 - Unauthenticated Sensitive Information Exposure Through Unprotected Directory

The Return Refund and Exchange For WooCommerce – Return Management System, RMA Exchange, Wallet And Cancel Order Features plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 4.4.5 via the 'attachment' directory. This makes it possible for...

5.9CVSS0.00437EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2025/02/14 5:22 a.m.10 views

CVE-2024-13641 Return Refund and Exchange For WooCommerce <= 4.4.5 - Unauthenticated Sensitive Information Exposure Through Unprotected Directory

The Return Refund and Exchange For WooCommerce – Return Management System, RMA Exchange, Wallet And Cancel Order Features plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 4.4.5 via the 'attachment' directory. This makes it possible for...

5.9CVSS5.6AI score0.00437EPSS
Exploits0References3
CVE
CVE
added 2025/02/14 5:22 a.m.61 views

CVE-2024-13641

CVE-2024-13641 affects the WordPress plugin Return Refund and Exchange For WooCommerce (aka woo-refund-and-exchange-lite). The issue is a sensitive information exposure via the insecure directory path /wp-content/attachment that stores order refund attachments. Affected versions: all up to and in...

7.5CVSS5.6AI score0.00437EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder