Lucene search
K

22 matches found

Patchstack
Patchstack
added 2025/12/30 8:9 a.m.7 views

WordPress Free Shipping Bar: Amount Left for Free Shipping for WooCommerce plugin <= 2.4.9 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Muhammad Yudha - DJ in WordPress Plugin Free Shipping Bar: Amount Left for Free Shipping for WooCommerce versions = 2.4.9...

5.4CVSS6.1AI score0.00135EPSS
Exploits0Affected Software1
RedhatCVE
RedhatCVE
added 2025/12/25 1:23 p.m.7 views

CVE-2025-68528

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in WPFactory Free Shipping Bar: Amount Left for Free Shipping for WooCommerce amount-left-free-shipping-woocommerce allows Stored XSS.This issue affects Free Shipping Bar: Amount Left for Free Shippin...

6.5CVSS6AI score0.00135EPSS
Exploits0References1
EUVD
EUVD
added 2025/12/24 3:30 p.m.3 views

EUVD-2025-205194

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in WPFactory Free Shipping Bar: Amount Left for Free Shipping for WooCommerce amount-left-free-shipping-woocommerce allows Stored XSS.This issue affects Free Shipping Bar: Amount Left for Free Shippin...

5.4CVSS5.5AI score0.00135EPSS
Exploits0References2
NVD
NVD
added 2025/12/24 1:16 p.m.8 views

CVE-2025-68528

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in WPFactory Free Shipping Bar: Amount Left for Free Shipping for WooCommerce amount-left-free-shipping-woocommerce allows Stored XSS.This issue affects Free Shipping Bar: Amount Left for Free Shippin...

6.5CVSS0.00135EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/12/24 12:31 p.m.3 views

CVE-2025-68528 WordPress Free Shipping Bar: Amount Left for Free Shipping for WooCommerce plugin <= 2.4.9 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in WPFactory Free Shipping Bar: Amount Left for Free Shipping for WooCommerce amount-left-free-shipping-woocommerce allows Stored XSS.This issue affects Free Shipping Bar: Amount Left for Free Shippin...

6.5CVSS5.6AI score0.00135EPSS
Exploits0References1
CVE
CVE
added 2025/12/24 12:31 p.m.9 views

CVE-2025-68528

CVE-2025-68528 is a Stored XSS vulnerability in the Free Shipping Bar: Amount Left for Free Shipping for WooCommerce plugin. The issue arises from improper neutralization of input during web page generation, enabling stored cross-site scripting. Affected plugin versions are from n/a through 2.4.9...

6.5CVSS5.6AI score0.00135EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/12/24 12:31 p.m.37 views

CVE-2025-68528 WordPress Free Shipping Bar: Amount Left for Free Shipping for WooCommerce plugin <= 2.4.9 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in WPFactory Free Shipping Bar: Amount Left for Free Shipping for WooCommerce amount-left-free-shipping-woocommerce allows Stored XSS.This issue affects Free Shipping Bar: Amount Left for Free Shippin...

6.5CVSS0.00135EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/12/24 12:0 a.m.5 views

PT-2025-53093

Name of the Vulnerable Software and Affected Versions WPFactory Free Shipping Bar: Amount Left for Free Shipping for WooCommerce versions through 2.4.9 Description The software contains a flaw related to improper handling of user-supplied data during web page creation, potentially leading to...

5.4CVSS5.6AI score0.00135EPSS
Exploits0References4
CNNVD
CNNVD
added 2025/12/24 12:0 a.m.7 views

WordPress plugin Free Shipping Bar: Amount Left for Free Shipping for WooCommerce 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. WordPress is a blogging platform developed using the PHP language, which provides the ability to host personal blog sites on PHP and MySQL based servers...

6.5CVSS5.7AI score0.00135EPSS
Exploits0References1
Hacker One
Hacker One
added 2025/11/15 5:49 a.m.10 views

AWS VDP: Unlimited Reuse of Coupon Code Allows Free Shipping on All Orders on ██████████

A vulnerability was found in the coupon code system of the ██████████ online store. The coupon code for free shipping could be used multiple times on any number of orders without any restrictions or tracking. This allowed users to bypass shipping charges indefinitely, resulting in a direct...

5.6AI score
Exploits0
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-28173

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.00216EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/21 3:14 p.m.13 views

CVE-2025-48253

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in WPFactory Free Shipping Bar: Amount Left for Free Shipping for WooCommerce amount-left-free-shipping-woocommerce allows Stored XSS.This issue affects Free Shipping Bar: Amount Left for Free Shippin...

6.5CVSS5.9AI score0.00216EPSS
Exploits0References1
Patchstack
Patchstack
added 2025/05/19 4:29 p.m.8 views

WordPress Free Shipping Bar: Amount Left for Free Shipping for WooCommerce plugin <= 2.4.6 - Cross Site Scripting (XSS) Vulnerability

Cross Site Scripting XSS Vulnerability discovered by muhammad yudha in WordPress Plugin Free Shipping Bar: Amount Left for Free Shipping for WooCommerce versions = 2.4.6...

6.5CVSS6AI score0.00216EPSS
Exploits0Affected Software1
OSV
OSV
added 2025/05/19 3:15 p.m.4 views

CVE-2025-48253

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in WPFactory Free Shipping Bar: Amount Left for Free Shipping for WooCommerce allows Stored XSS. This issue affects Free Shipping Bar: Amount Left for Free Shipping for WooCommerce: from n/a through...

5.4CVSS5.8AI score0.00216EPSS
Exploits0References1
NVD
NVD
added 2025/05/19 3:15 p.m.17 views

CVE-2025-48253

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in WPFactory Free Shipping Bar: Amount Left for Free Shipping for WooCommerce amount-left-free-shipping-woocommerce allows Stored XSS.This issue affects Free Shipping Bar: Amount Left for Free Shippin...

6.5CVSS0.00216EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/05/19 2:44 p.m.13 views

CVE-2025-48253 WordPress Free Shipping Bar: Amount Left for Free Shipping for WooCommerce <= 2.4.6 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in WPFactory Free Shipping Bar: Amount Left for Free Shipping for WooCommerce allows Stored XSS. This issue affects Free Shipping Bar: Amount Left for Free Shipping for WooCommerce: from n/a through...

6.5CVSS6.5AI score0.00216EPSS
Exploits0References1
CVE
CVE
added 2025/05/19 2:44 p.m.36 views

CVE-2025-48253

CVE-2025-48253 concerns the WordPress plugin Free Shipping Bar: Amount Left for Free Shipping for WooCommerce. The issue is a stored XSS caused by improper input neutralization during web page generation, affecting versions up to 2.4.6 (n/a through 2.4.6). Multiple sources confirm the vulnerabili...

6.5CVSS5.9AI score0.00216EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2025/05/19 12:0 a.m.9 views

PT-2025-21965 · Woocommerce · Free Shipping Bar: Amount Left For Free Shipping For Woocommerce

Name of the Vulnerable Software and Affected Versions: Free Shipping Bar: Amount Left for Free Shipping for WooCommerce versions through 2.4.6 Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting. This allows for Stor...

6.5CVSS6AI score0.00216EPSS
Exploits0References6
CNNVD
CNNVD
added 2025/05/19 12:0 a.m.4 views

WordPress plugin Free Shipping Bar 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting vulnerabilit...

6.5CVSS6.1AI score0.00216EPSS
Exploits0References1
wpexploit
wpexploit
added 2023/02/14 12:0 a.m.111 views

Ocean Extra < 2.1.3 - Contributor+ Stored XSS

The plugin does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks Note: This requires the OceanWP theme to be...

0.5AI score
Exploits0
Rows per page
Query Builder