11 matches found
EUVD-2023-37017
Malicious code in bioql PyPI...
EUVD-2025-11590
Malicious code in bioql PyPI...
CVE-2023-32796
Unauth. Stored Cross-Site Scripting XSS vulnerability in MingoCommerce WooCommerce Product Enquiry plugin = 2.3.4 versions...
CVE-2025-23773
Missing Authorization vulnerability in mingocommerce Delete All Posts delele-all allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Delete All Posts: from n/a through = 1.1.1...
CVE-2025-23773
Missing Authorization vulnerability in mingocommerce Delete All Posts allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Delete All Posts: through 1.1.1...
CVE-2025-23773
Missing Authorization vulnerability in mingocommerce Delete All Posts allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Delete All Posts: through 1.1.1...
CVE-2025-23773
CVE-2025-23773 concerns the WordPress Delete All Posts plugin (mingocommerce) with versions n/a–1.1.1, where a Missing Authorization vulnerability stems from incorrectly configured access control. The CVSS 3.1 vector (AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L) indicates no network privileges required, ...
PT-2025-17023 · Unknown · Mingocommerce Delete All Posts
Name of the Vulnerable Software and Affected Versions: mingocommerce Delete All Posts versions n/a through 1.1.1 Description: The issue is related to a Missing Authorization vulnerability, which allows exploiting incorrectly configured access control security levels. Recommendations: For versions...
CVE-2023-32796
Unauth. Stored Cross-Site Scripting XSS vulnerability in MingoCommerce WooCommerce Product Enquiry plugin = 2.3.4 versions...
CVE-2023-32796
Unauth. Stored Cross-Site Scripting XSS vulnerability in MingoCommerce WooCommerce Product Enquiry plugin = 2.3.4 versions...
CVE-2023-32796
CVE-2023-32796 describes an unauthenticated stored XSS vulnerability in the WooCommerce Product Enquiry plugin for WordPress, affecting versions up to 2.3.4 (per the CVE listing). Patch sources indicate a fix in version 2.7.0; Red Hat/Red flags and other connected entries corroborate the vulnerab...