CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Missing Authorization vulnerability in Amir Helzer WooCommerce Multilingual & Multicurrency woocommerce-multilingual allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WooCommerce Multilingual & Multicurrency: from n/a through = 5.3.8...

5.3CVSS0.00311EPSS

Exploits0References1

RedhatCVE•added 2025/02/05 7:6 a.m.•5 views

CVE-2024-32602

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in OnTheGoSystems WooCommerce Multilingual & Multicurrency.This issue affects WooCommerce Multilingual & Multicurrency: from n/a through 5.3.3.1...

7.6CVSS5.5AI score0.00431EPSS

Exploits0References1

Vulnrichment•added 2024/12/13 2:23 p.m.•13 views

CVE-2023-38383 WordPress Language plugin <= 1.2.1 - Broken Access Control vulnerability

Missing Authorization vulnerability in OnTheGoSystems Language allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Language: from n/a through 1.2.1...

5.4CVSS6.9AI score0.00107EPSS

Exploits0References1

NVD•added 2024/11/01 3:15 p.m.•18 views

CVE-2024-44006

Missing Authorization vulnerability in Amir Helzer WooCommerce Multilingual & Multicurrency woocommerce-multilingual.This issue affects WooCommerce Multilingual & Multicurrency: from n/a through = 5.3.6...

8.8CVSS0.0037EPSS

Exploits0References1

CVE•added 2024/11/01 2:17 p.m.•57 views

CVE-2024-44006

CVE-2024-44006 affects WordPress WooCommerce Multilingual & Multicurrency (OnTheGoSystems) plugin

8.8CVSS5.9AI score0.0037EPSS

Exploits0References1Affected Software1

CVE•added 2024/06/09 10:43 a.m.•57 views

CVE-2024-30466

CVE-2024-30466 is a Missing Authorization vulnerability in OnTheGoSystems WooCommerce Multilingual & Multicurrency (WooCommerce Multilingual & Multicurrency) affecting versions up to 5.3.4. Root cause: missing authorization checks enabling unauthorized access. Impact: high confidentiality, integr...

8.8CVSS5.9AI score0.00158EPSS

Exploits0References1Affected Software1

NVD•added 2024/04/18 11:15 a.m.•12 views

CVE-2024-32602

7.6CVSS7.9AI score0.00431EPSS

Exploits0References1

CVE•added 2024/04/18 10:25 a.m.•74 views

CVE-2024-32602

CVE-2024-32602 is an SQL Injection flaw in OnTheGoSystems WooCommerce Multilingual & Multicurrency (affecting 5.3.3.1 and earlier). Root cause: improper neutralization of SQL elements in the plugin’s queries. Impact: high risk to confidentiality and integrity of database content; authenticated at...

7.6CVSS5.5AI score0.00431EPSS

Exploits0References1Affected Software1

NVD•added 2024/03/26 8:15 p.m.•9 views

CVE-2023-27440

Unrestricted Upload of File with Dangerous Type vulnerability in OnTheGoSystems Types.This issue affects Types: from n/a through 3.4.17...

7.2CVSS7AI score0.0053EPSS

Exploits0References1

Cvelist•added 2024/03/26 7:57 p.m.•20 views

CVE-2023-27440 WordPress Toolset Types plugin <= 3.4.17 - Authenticated Arbitrary File Upload Vulnerability

Unrestricted Upload of File with Dangerous Type vulnerability in OnTheGoSystems Types.This issue affects Types: from n/a through 3.4.17...

7.2CVSS7.2AI score0.0053EPSS

Exploits0References1