Lucene search
K

5 matches found

CNVD
CNVD
added 2026/01/19 12:0 a.m.5 views

WordPress Flat Shipping Rate by City for WooCommerce plugin SQL Injection Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress plugin is an application plugin. A SQL injection vulnerability exists in the WordPress Flat Shipping Rate by City for WooCommerce plugin, which stems from insufficient cleaning and escaping of the cities...

4.9CVSS6AI score0.00263EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/15 6:21 a.m.10 views

CVE-2026-0678

The Flat Shipping Rate by City for WooCommerce plugin for WordPress is vulnerable to time-based SQL Injection via the 'cities' parameter in all versions up to, and including, 1.0.3 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL...

4.9CVSS6.6AI score0.00263EPSS
Exploits0References1
NVD
NVD
added 2026/01/14 6:15 a.m.9 views

CVE-2026-0678

The Flat Shipping Rate by City for WooCommerce plugin for WordPress is vulnerable to time-based SQL Injection via the 'cities' parameter in all versions up to, and including, 1.0.3 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL...

4.9CVSS0.00263EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/01/14 5:28 a.m.28 views

CVE-2026-0678 Shipping Rates by City for WooCommerce <= 1.0.3 - Authenticated (Shop Manager+) SQL Injection via 'cities' Parameter

The Flat Shipping Rate by City for WooCommerce plugin for WordPress is vulnerable to time-based SQL Injection via the 'cities' parameter in all versions up to, and including, 1.0.3 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL...

4.9CVSS0.00263EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/01/14 12:0 a.m.5 views

WordPress plugin Flat Shipping Rate by City for WooCommerce SQL注入漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress plugin is an application plugin. A SQL injection vulnerability exists in the WordPress Flat Shipping Rate by City for WooCommerce plugin, which stems from insufficient cleaning and escaping of the cities...

4.9CVSS5.9AI score0.00263EPSS
Exploits0References3
Rows per page
Query Builder