Lucene search
K

11 matches found

NVD
NVD
added 2024/02/05 6:15 a.m.26 views

CVE-2024-24866

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Biteship Biteship: Plugin Ongkos Kirim Kurir Instant, Reguler, Kargo allows Reflected XSS.This issue affects Biteship: Plugin Ongkos Kirim Kurir Instant, Reguler, Kargo: from n/a through 2.2.24...

7.1CVSS6.9AI score0.0037EPSS
Exploits0References1
OSV
OSV
added 2024/02/05 6:15 a.m.5 views

CVE-2024-24866

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Biteship Biteship: Plugin Ongkos Kirim Kurir Instant, Reguler, Kargo allows Reflected XSS.This issue affects Biteship: Plugin Ongkos Kirim Kurir Instant, Reguler, Kargo: from n/a through 2.2.24...

6.1CVSS7.3AI score0.0037EPSS
Exploits0References1
Prion
Prion
added 2024/02/05 6:15 a.m.14 views

Cross site scripting

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Biteship Biteship: Plugin Ongkos Kirim Kurir Instant, Reguler, Kargo allows Reflected XSS.This issue affects Biteship: Plugin Ongkos Kirim Kurir Instant, Reguler, Kargo: from n/a through 2.2.24...

5.8CVSS7.2AI score0.0037EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2024/02/05 6:2 a.m.39 views

CVE-2024-24866

CVE-2024-24866 affects the WordPress plugin Biteship (Ongkos Kirim Kurir Instant, Reguler, Kargo). The vulnerability is a Reflected Cross-Site Scripting (XSS) in input handling during web page generation, impacting versions through 2.2.24. PatchStack confirms the fix is in 2.2.25; Red Hat and CVE...

7.1CVSS7.1AI score0.0037EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2024/02/05 12:0 a.m.2 views

WordPress plugin Biteship: Plugin Ongkos Kirim Kurir Instant, Reguler, Kargo Cross-Site Scripting Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. WordPress plugin Biteship:...

7.1CVSS6.3AI score0.0037EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/02/04 12:0 a.m.6 views

PT-2024-20622 · Biteship · Plugin Ongkos Kirim Kurir Instant

Name of the Vulnerable Software and Affected Versions: Biteship: Plugin Ongkos Kirim Kurir Instant, Reguler, Kargo versions through 2.2.24 Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting. This allows Reflected XS...

7.1CVSS6.6AI score0.0037EPSS
Exploits0References5
CVE
CVE
added 2024/01/29 2:44 p.m.47 views

CVE-2023-6278

CVE-2023-6278 affects the Biteship for WooCommerce WordPress plugin prior to 2.2.25. The issue is a reflected XSS caused by unsanitized and unescaped biteship_error and biteship_message parameters, displayed back on the page and exploitable against high-privilege admins. Remediation: upgrade to v...

6.1CVSS6AI score0.0037EPSS
Exploits2References1Affected Software1
Positive Technologies
Positive Technologies
added 2024/01/29 12:0 a.m.6 views

PT-2024-14922 · WordPress · Ongkos Kirim Kurir Instant

Name of the Vulnerable Software and Affected Versions: The Biteship: Plugin Ongkos Kirim Kurir Instant, Reguler, Kargo WordPress plugin versions prior to 2.2.25 Description: The issue is related to a Reflected Cross-Site Scripting problem. It occurs because the biteship error and biteship message...

6.1CVSS6AI score0.0037EPSS
Exploits2References5
NVD
NVD
added 2023/12/15 4:15 p.m.20 views

CVE-2023-49767

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Biteship Biteship: Plugin Ongkos Kirim Kurir Instant, Reguler, Kargo allows Stored XSS.This issue affects Biteship: Plugin Ongkos Kirim Kurir Instant, Reguler, Kargo: from n/a through 2.2.24...

5.9CVSS0.00394EPSS
Exploits0References1
OSV
OSV
added 2023/12/15 4:15 p.m.7 views

CVE-2023-49767

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Biteship Biteship: Plugin Ongkos Kirim Kurir Instant, Reguler, Kargo allows Stored XSS.This issue affects Biteship: Plugin Ongkos Kirim Kurir Instant, Reguler, Kargo: from n/a through 2.2.24...

4.8CVSS5.8AI score0.00394EPSS
Exploits0References1
CVE
CVE
added 2023/12/15 3:19 p.m.82 views

CVE-2023-49767

CVE-2023-49767 affects WordPress plugin Biteship (Ongkos Kirim Kurir Instant, Reguler, Kargo). A Stored XSS vulnerability exists in versions up to 2.2.24 (patched in 2.2.28). Exploitation requires authenticated access by Shop Manager or higher, enabling stored script execution via plugin settings...

5.9CVSS6.6AI score0.00394EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder