EUVD-2024-50730

Malicious code in bioql PyPI...

WordPress ELEX WooCommerce Advanced Bulk Edit Products, Prices & Attributes plugin <= 1.4.9 - Subscriber+ SQL Injection vulnerability

Subscriber+ SQL Injection vulnerability discovered by astra.r3verii in WordPress Plugin ELEX WooCommerce Advanced Bulk Edit Products, Prices & Attributes versions = 1.4.9...

CVE-2024-12266

The ELEX WooCommerce Dynamic Pricing and Discounts plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the elexdpexportrules and elexdpimportrules functions in all versions up to, and including, 2.1.7. This makes it possible for unauthenticated...

Exploit for CVE-2025-22352

1️⃣ Component type WordPress plugin 2️⃣ Component details...

WordPress ELEX WooCommerce Dynamic Pricing and Discounts Plugin <= 2.1.2 is vulnerable to Cross Site Request Forgery (CSRF)

Software ELEX WooCommerce Dynamic Pricing and Discounts Type Plugin Vulnerable versions = 2.1.2 Fixed in 2.1.3 OWASP Top 10 A5: Security Misconfiguration Classification Cross Site Request Forgery CSRF CVE CVE-2024-32105 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID...