11 matches found
CVE-2024-24866
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Biteship Biteship: Plugin Ongkos Kirim Kurir Instant, Reguler, Kargo allows Reflected XSS.This issue affects Biteship: Plugin Ongkos Kirim Kurir Instant, Reguler, Kargo: from n/a through 2.2.24...
CVE-2024-24866
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Biteship Biteship: Plugin Ongkos Kirim Kurir Instant, Reguler, Kargo allows Reflected XSS.This issue affects Biteship: Plugin Ongkos Kirim Kurir Instant, Reguler, Kargo: from n/a through 2.2.24...
Cross site scripting
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Biteship Biteship: Plugin Ongkos Kirim Kurir Instant, Reguler, Kargo allows Reflected XSS.This issue affects Biteship: Plugin Ongkos Kirim Kurir Instant, Reguler, Kargo: from n/a through 2.2.24...
CVE-2024-24866
CVE-2024-24866 affects the WordPress plugin Biteship (Ongkos Kirim Kurir Instant, Reguler, Kargo). The vulnerability is a Reflected Cross-Site Scripting (XSS) in input handling during web page generation, impacting versions through 2.2.24. PatchStack confirms the fix is in 2.2.25; Red Hat and CVE...
WordPress plugin Biteship: Plugin Ongkos Kirim Kurir Instant, Reguler, Kargo Cross-Site Scripting Vulnerability
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. WordPress plugin Biteship:...
PT-2024-20622 · Biteship · Plugin Ongkos Kirim Kurir Instant
Name of the Vulnerable Software and Affected Versions: Biteship: Plugin Ongkos Kirim Kurir Instant, Reguler, Kargo versions through 2.2.24 Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting. This allows Reflected XS...
CVE-2023-6278
CVE-2023-6278 affects the Biteship for WooCommerce WordPress plugin prior to 2.2.25. The issue is a reflected XSS caused by unsanitized and unescaped biteship_error and biteship_message parameters, displayed back on the page and exploitable against high-privilege admins. Remediation: upgrade to v...
PT-2024-14922 · WordPress · Ongkos Kirim Kurir Instant
Name of the Vulnerable Software and Affected Versions: The Biteship: Plugin Ongkos Kirim Kurir Instant, Reguler, Kargo WordPress plugin versions prior to 2.2.25 Description: The issue is related to a Reflected Cross-Site Scripting problem. It occurs because the biteship error and biteship message...
CVE-2023-49767
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Biteship Biteship: Plugin Ongkos Kirim Kurir Instant, Reguler, Kargo allows Stored XSS.This issue affects Biteship: Plugin Ongkos Kirim Kurir Instant, Reguler, Kargo: from n/a through 2.2.24...
CVE-2023-49767
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Biteship Biteship: Plugin Ongkos Kirim Kurir Instant, Reguler, Kargo allows Stored XSS.This issue affects Biteship: Plugin Ongkos Kirim Kurir Instant, Reguler, Kargo: from n/a through 2.2.24...
CVE-2023-49767
CVE-2023-49767 affects WordPress plugin Biteship (Ongkos Kirim Kurir Instant, Reguler, Kargo). A Stored XSS vulnerability exists in versions up to 2.2.24 (patched in 2.2.28). Exploitation requires authenticated access by Shop Manager or higher, enabling stored script execution via plugin settings...