CVE-2023-4111

A vulnerability was found in PHP Jabbers Bus Reservation System 1.1 and classified as problematic. Affected by this issue is some unknown functionality of the file /index.php. The manipulation of the argument index/pickupid leads to cross site scripting. The attack may be launched remotely...

CVE-2023-53877

Bus Reservation System 1.1 contains a SQL injection vulnerability in the pickupid parameter that allows attackers to manipulate database queries. Attackers can exploit boolean-based, error-based, and time-based blind SQL injection techniques to steal information from the database...

CVE-2023-53877

Bus Reservation System 1.1 contains a SQL injection vulnerability in the pickupid parameter that allows attackers to manipulate database queries. Attackers can exploit boolean-based, error-based, and time-based blind SQL injection techniques to steal information from the database...

CVE-2023-53877

Bus Reservation System 1.1 contains a SQL injection vulnerability in the pickupid parameter that allows attackers to manipulate database queries. Attackers can exploit boolean-based, error-based, and time-based blind SQL injection techniques to steal information from the database...

CVE-2023-53877

CVE-2023-53877 affects Bus Reservation System 1.1. The vulnerability is a SQL injection in the pickup_id parameter, enabling attackers to manipulate database queries. Techniques cited: boolean-based , error-based , and time-based blind SQL injection to steal information from the database. Practic...

CVE-2023-53877 Bus Reservation System 1.1 Multiple SQL Injection via pickup_id Parameter

Bus Reservation System 1.1 contains a SQL injection vulnerability in the pickupid parameter that allows attackers to manipulate database queries. Attackers can exploit boolean-based, error-based, and time-based blind SQL injection techniques to steal information from the database...

Bus Reservation System SQL注入漏洞

Bus Reservation System is a PHPJabbers open source bus reservation system. A SQL injection vulnerability exists in Bus Reservation System version 1.1, which stems from a SQL injection in the pickupid parameter, and could lead to manipulation of database queries and theft of information...

PT-2025-51295

Name of the Vulnerable Software and Affected Versions Bus Reservation System version 1.1 Description The Bus Reservation System version 1.1 contains a SQL injection issue in the pickup id parameter. This allows attackers to manipulate database queries using boolean-based, error-based, and...

SGWBox N3 安全漏洞

SGWBox N3 is a network storage device from China's Pickup Dock SGWBox. A security vulnerability exists in SGWBox N3 version 2.0.25, which stems from incorrect manipulation of the parameter params in the file /usr/sbin/httpeshellserver, which could result in a buffer overflow...

EUVD-2024-30600

Malicious code in bioql PyPI...

EUVD-2024-29179

Malicious code in bioql PyPI...

EUVD-2025-19982

Malicious code in bioql PyPI...

CVE-2025-47634

Missing Authorization vulnerability in Keylor Mendoza WC Pickup Store wc-pickup-store allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WC Pickup Store: from n/a through = 1.8.9...

CVE-2025-47634

Missing Authorization vulnerability in Keylor Mendoza WC Pickup Store wc-pickup-store allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WC Pickup Store: from n/a through = 1.8.9...

CVE-2025-47634 WordPress WC Pickup Store plugin <= 1.8.9 - Settings Change Vulnerability

Missing Authorization vulnerability in Keylor Mendoza WC Pickup Store wc-pickup-store allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WC Pickup Store: from n/a through = 1.8.9...

CVE-2025-47634

CVE-2025-47634 refers to a Missing Authorization vulnerability in the WordPress WC Pickup Store plugin, affecting versions up to 1.8.9. The issue arises from insufficient access-control checks, enabling exploitation of incorrectly configured authorization levels. Public sources in connected docum...

WordPress plugin WC Pickup Store 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plug-in. A security vulnerability...

PT-2025-27915 · Unknown · Keylor Mendoza Wc Pickup Store

Name of the Vulnerable Software and Affected Versions: Keylor Mendoza WC Pickup Store versions 1.8.9 and earlier Description: The issue is related to a Missing Authorization vulnerability, which allows exploitation of incorrectly configured access control security levels. Recommendations: For...

CVE-2024-32814

Missing Authorization vulnerability in Zorem Advanced Local Pickup for WooCommerce.This issue affects Advanced Local Pickup for WooCommerce: from n/a through 1.6.1...

CVE-2023-28991

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in PI Websolution Order date, Order pickup, Order date time, Pickup Location, delivery date for WooCommerce plugin = 3.0.19 versions...