Lucene search
K

6 matches found

RedhatCVE
RedhatCVE
added 2026/03/05 1:57 a.m.6 views

CVE-2026-2292

The Morkva UA Shipping plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 1.7.9 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with administrator-level...

4.4CVSS5.9AI score0.00249EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-3816

Malicious code in bioql PyPI...

9.3CVSS6.6AI score0.0036EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/06 2:30 a.m.5 views

CVE-2025-24612

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Ihor Kit Shipping for Nova Poshta nova-poshta-ttn allows SQL Injection.This issue affects Shipping for Nova Poshta: from n/a through = 1.19.6...

9.3CVSS5.9AI score0.0036EPSS
Exploits0References1
NVD
NVD
added 2025/01/27 2:15 p.m.12 views

CVE-2025-24612

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Ihor Kit Shipping for Nova Poshta nova-poshta-ttn allows SQL Injection.This issue affects Shipping for Nova Poshta: from n/a through = 1.19.6...

9.3CVSS0.0036EPSS
Exploits0References1
CVE
CVE
added 2025/01/27 1:59 p.m.55 views

CVE-2025-24612

CVE-2025-24612: Affected product is WordPress Shipping for Nova Poshta plugin (versions n/a through 1.19.6). The root cause is improper neutralization of special elements used in SQL commands, enabling SQL injection. Exploitation details are not described in the provided sources, but the CVSS met...

9.3CVSS5.9AI score0.0036EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/01/27 12:0 a.m.4 views

PT-2025-5447 · Unknown · Morkva Shipping For Nova Poshta

Name of the Vulnerable Software and Affected Versions: MORKVA Shipping for Nova Poshta versions n/a through 1.19.6 Description: The issue is related to an SQL Injection vulnerability due to improper neutralization of special elements used in an SQL command. This allows for SQL Injection,...

9.3CVSS8.2AI score0.0036EPSS
Exploits0References6
Rows per page
Query Builder