9 matches found
EUVD-2024-51721
Malicious code in bioql PyPI...
CVE-2024-13718
The Flexible Wishlist for WooCommerce – Ecommerce Wishlist & Save for later plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.2.26. This is due to missing or incorrect nonce validation on several functions. This makes it possible for...
CVE-2024-13718
CVE-2024-13718 concerns the WordPress plugin “Flexible Wishlist for WooCommerce – Ecommerce Wishlist & Save for later” (up to version 1.2.26). The vulnerability is a Cross-Site Request Forgery (CSRF) due to missing or incorrect nonce validation on multiple functions, enabling unauthenticated atta...
CVE-2024-13718 Flexible Wishlist for WooCommerce – Ecommerce Wishlist & Save for later <= 1.2.26 - Cross-Site Request Forgery to Wishlist Creation/Modification
The Flexible Wishlist for WooCommerce – Ecommerce Wishlist & Save for later plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.2.26. This is due to missing or incorrect nonce validation on several functions. This makes it possible for...
WordPress plugin Flexible Wishlist for WooCommerce 跨站请求伪造漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site request forgery vulnerability...
PT-2025-6601 · WordPress · The Flexible Wishlist For Woocommerce
Name of the Vulnerable Software and Affected Versions: Flexible Wishlist for WooCommerce – Ecommerce Wishlist & Save for later plugin for WordPress versions up to, and including, 1.2.26 Description: The issue is related to Cross-Site Request Forgery due to missing or incorrect nonce validation on...
WordPress Flexible Wishlist for WooCommerce plugin <= 1.2.26 - Cross-Site Request Forgery to Wishlist Creation/Modification vulnerability
Cross-Site Request Forgery to Wishlist Creation/Modification vulnerability discovered by Tim Coen in WordPress Plugin Flexible Wishlist for WooCommerce versions = 1.2.26...
CVE-2024-13696
The Flexible Wishlist for WooCommerce – Ecommerce Wishlist & Save for later plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘wishlistname’ parameter in all versions up to, and including, 1.2.25 due to insufficient input sanitization and output escaping. This makes it...
WordPress plugin Flexible Wishlist for WooCommerce 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists...