EUVD-2024-37067

Malicious code in bioql PyPI...

CVE-2024-37953

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in MBE Worldwide S.P.A. MBE eShip allows Reflected XSS.This issue affects MBE eShip: from n/a through 2.1.2...

CVE-2024-38729

Cross-Site Request Forgery CSRF vulnerability in mbeelink MBE eShip mail-boxes-etc allows Cross Site Request Forgery.This issue affects MBE eShip: from n/a through = 2.1.2...

CVE-2024-38729 WordPress MBE eShip plugin <= 2.1.2 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in mbeelink MBE eShip mail-boxes-etc allows Cross Site Request Forgery.This issue affects MBE eShip: from n/a through = 2.1.2...

CVE-2024-38742

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in MBE Worldwide S.P.A. MBE eShip allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects MBE eShip: from n/a through 2.1.2...

CVE-2024-38742 WordPress MBE eShip plugin <= 2.1.2 - Sensitive Data Exposure vulnerability

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in MBE Worldwide S.P.A. MBE eShip allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects MBE eShip: from n/a through 2.1.2...

CVE-2024-38742

CVE-2024-38742: WordPress plugin MBE eShip (MBE eShip) is affected (versions up to 2.1.2; affected range n/a–2.1.2) by an information disclosure vulnerability where Access Control Lists (ACLs) do not properly constrain functionality, potentially exposing sensitive data to unauthorized actors. CVS...

CVE-2024-38742 WordPress MBE eShip plugin <= 2.1.2 - Sensitive Data Exposure vulnerability

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in MBE Worldwide S.P.A. MBE eShip allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects MBE eShip: from n/a through 2.1.2...

CVE-2024-37953 WordPress MBE eShip plugin <= 2.1.2 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in MBE Worldwide S.P.A. MBE eShip allows Reflected XSS.This issue affects MBE eShip: from n/a through 2.1.2...

CVE-2024-37953

CVE-2024-37953 is a Reflected XSS in the MBE eShip WordPress plugin (MBE eShip) caused by improper neutralization of input during web page generation. Affected versions are up to and including 2.1.2. The vulnerability is publicly documented by Red Hat and other sources, which also advise upgradin...

CVE-2024-37953 WordPress MBE eShip plugin <= 2.1.2 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in MBE Worldwide S.P.A. MBE eShip allows Reflected XSS.This issue affects MBE eShip: from n/a through 2.1.2...