15 matches found
EUVD-2024-50836
Malicious code in bioql PyPI...
WordPress MarketKing Plugin <= 2.0.92 - Cross Site Scripting (XSS) Vulnerability
Cross Site Scripting XSS Vulnerability discovered by Muhammad Yudha - DJ in WordPress Plugin MarketKing versions = 2.0.92...
CVE-2025-58702 WordPress MarketKing Plugin <= 2.0.92 - Cross Site Scripting (XSS) Vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in WebWizards MarketKing marketking-multivendor-marketplace-for-woocommerce allows Stored XSS.This issue affects MarketKing: from n/a through = 2.0.92...
CVE-2024-12413
The MarketKing — Ultimate WooCommerce Multivendor Marketplace Solution plugin for WordPress is vulnerable to unauthorized access due to missing capability checks on several functions like 'marketkingdeleteteammember', 'marketkingrejectuser', 'marketkingsaveprofilesettings', and many more in all...
CVE-2024-13519
The MarketKing — Ultimate WooCommerce Multivendor Marketplace Solution plugin for WordPress is vulnerable to Stored Cross-Site Scripting via plugin's settings in all versions up to, and including, 1.9.80 due to insufficient input sanitization and output escaping. This makes it possible for...
CVE-2024-13519
The MarketKing — Ultimate WooCommerce Multivendor Marketplace Solution plugin for WordPress is vulnerable to Stored Cross-Site Scripting via plugin's settings in all versions up to, and including, 1.9.80 due to insufficient input sanitization and output escaping. This makes it possible for...
CVE-2024-13519 MarketKing — Ultimate WooCommerce Multivendor Marketplace Solution <= 1.9.80 - Authenticated (Shop Manager+) Stored Cross-Site Scripting
The MarketKing — Ultimate WooCommerce Multivendor Marketplace Solution plugin for WordPress is vulnerable to Stored Cross-Site Scripting via plugin's settings in all versions up to, and including, 1.9.80 due to insufficient input sanitization and output escaping. This makes it possible for...
CVE-2024-13519 MarketKing — Ultimate WooCommerce Multivendor Marketplace Solution <= 1.9.80 - Authenticated (Shop Manager+) Stored Cross-Site Scripting
The MarketKing — Ultimate WooCommerce Multivendor Marketplace Solution plugin for WordPress is vulnerable to Stored Cross-Site Scripting via plugin's settings in all versions up to, and including, 1.9.80 due to insufficient input sanitization and output escaping. This makes it possible for...
WordPress MarketKing plugin <= 1.9.80 - Authenticated (Shop Manager+) Stored Cross-Site Scripting vulnerability
Authenticated Shop Manager+ Stored Cross-Site Scripting vulnerability discovered by Karolina Jankowska in WordPress Plugin MarketKing versions = 1.9.80...
CVE-2024-12413
The MarketKing — Ultimate WooCommerce Multivendor Marketplace Solution plugin for WordPress is vulnerable to unauthorized access due to missing capability checks on several functions like 'marketkingdeleteteammember', 'marketkingrejectuser', 'marketkingsaveprofilesettings', and many more in all...
CVE-2024-12413
CVE-2024-12413 affects MarketKing — Ultimate WooCommerce Multivendor Marketplace Solution for WordPress. Vulnerable through missing capability checks in multiple functions (e.g., marketking_delete_team_member, marketkingrejectuser, marketking_save_profile_settings) in all versions up to 2.0.00, e...
CVE-2024-12413 MarketKing — Ultimate WooCommerce Multivendor Marketplace Solution <= 2.0.00 - Missing Authorization
The MarketKing — Ultimate WooCommerce Multivendor Marketplace Solution plugin for WordPress is vulnerable to unauthorized access due to missing capability checks on several functions like 'marketkingdeleteteammember', 'marketkingrejectuser', 'marketkingsaveprofilesettings', and many more in all...
CVE-2024-12413 MarketKing — Ultimate WooCommerce Multivendor Marketplace Solution <= 2.0.00 - Missing Authorization
The MarketKing — Ultimate WooCommerce Multivendor Marketplace Solution plugin for WordPress is vulnerable to unauthorized access due to missing capability checks on several functions like 'marketkingdeleteteammember', 'marketkingrejectuser', 'marketkingsaveprofilesettings', and many more in all...
PT-2024-17584 · WordPress · The Marketking — Ultimate Woocommerce Multivendor Marketplace Solution
Name of the Vulnerable Software and Affected Versions: The MarketKing — Ultimate WooCommerce Multivendor Marketplace Solution plugin for WordPress versions up to, and including, 2.0.00 Description: The issue is related to missing capability checks on several functions, including marketking delete...
WordPress MarketKing — Ultimate WooCommerce Multivendor Marketplace Solution plugin <= 2.0.00 - Missing Authorization vulnerability
Missing Authorization vulnerability discovered by Lucio Sá in WordPress Plugin MarketKing versions = 2.0.00...