22 matches found
EUVD-2023-37184
Malicious code in bioql PyPI...
CVE-2023-32963
Missing Authorization vulnerability in a3rev Software WooCommerce Predictive Search allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WooCommerce Predictive Search: from n/a through 5.8.0...
CVE-2023-32963
Missing Authorization vulnerability in a3rev Software WooCommerce Predictive Search allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WooCommerce Predictive Search: from n/a through 5.8.0...
CVE-2023-32963
Missing Authorization vulnerability in Steve Truman WooCommerce Predictive Search woocommerce-predictive-search allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WooCommerce Predictive Search: from n/a through = 5.8.0...
CVE-2023-32963 WordPress Predictive Search for WooCommerce plugin <= 5.8.0 - Broken Access Control vulnerability
Missing Authorization vulnerability in a3rev Software WooCommerce Predictive Search allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WooCommerce Predictive Search: from n/a through 5.8.0...
CVE-2023-32963
CVE-2023-32963 affects the WordPress plugin “WooCommerce Predictive Search” (WooCommerce Predictive Search) at versions up to 5.8.0. The root cause is Missing Authorization/OAuth-like access control, enabling unauthenticated users to exploit multiple AJAX actions due to broken access checks. The ...
CVE-2023-32963 WordPress Predictive Search for WooCommerce plugin <= 5.8.0 - Broken Access Control vulnerability
Missing Authorization vulnerability in Steve Truman WooCommerce Predictive Search woocommerce-predictive-search allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WooCommerce Predictive Search: from n/a through = 5.8.0...
WordPress plugin WooCommerce Predictive Search 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...
CVE-2024-38669
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in a3rev Software WooCommerce Predictive Search allows Reflected XSS.This issue affects WooCommerce Predictive Search: from n/a through 6.0.1...
CVE-2024-38669 WordPress Predictive Search for WooCommerce plugin <= 6.0.1 - Reflected Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in a3rev Software WooCommerce Predictive Search allows Reflected XSS.This issue affects WooCommerce Predictive Search: from n/a through 6.0.1...
CVE-2024-38669
CVE-2024-38669 is a reflected XSS in a3rev Software WooCommerce Predictive Search (WooCommerce Predictive Search) that affects the plugin up to version 6.0.1. The root cause is improper neutralization of input during web page generation, enabling input values to be reflected in the response and e...
CVE-2024-38669 WordPress Predictive Search for WooCommerce plugin <= 6.0.1 - Reflected Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in a3rev Software WooCommerce Predictive Search allows Reflected XSS.This issue affects WooCommerce Predictive Search: from n/a through 6.0.1...
WordPress Predictive Search for WooCommerce plugin <= 6.0.1 - Reflected Cross Site Scripting (XSS) vulnerability
Reflected Cross Site Scripting XSS vulnerability discovered by LVT-tholv2k Patchstack Alliance in WordPress Plugin WooCommerce Predictive Search versions = 6.0.1...
WordPress WooCommerce Predictive Search Plugin <= 5.8.0 is vulnerable to Broken Access Control
Software WooCommerce Predictive Search Type Plugin Vulnerable versions = 5.8.0 Fixed in 5.8.1 OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2023-32963 Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID 064312233642 Credits Mika Required...
WordPress Predictive Search Plugin <= 1.2.2 is vulnerable to Broken Access Control
Software Predictive Search Type Plugin Vulnerable versions = 1.2.2 Fixed in 1.2.3 OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE N/A Patch priority High CVSS severity High 6.5 Developer Claim ownership PSID 94b9c33947a8 Credits Unknown Required privilege...
WordPress E-Commerce Predictive Search Plugin <= 1.2.2 is vulnerable to Broken Access Control
Software E-Commerce Predictive Search Type Plugin Vulnerable versions = 1.2.2 Fixed in 1.2.3 OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE N/A Patch priority High CVSS severity High 6.5 Developer Claim ownership PSID 029980556b6b Credits WordFence Required...
WordPress E-Commerce Predictive Search Plugin - Cross Site Scripting
Because of this vulnerability, the attackers can inject arbitrary JavaScript or HTML code. Solution Update the plugin...
WordPress WooCommerce Predictive Search Plugin <= 1.0.5 - XSS
This plugin is prone to a cross site scripting vulnerability in index.php rs parameter. Solution Update the plugin...
WordPress WooCommerce Predictive Search Plugin <= 1.0.5 - XSS
This plugin is prone to a cross site scripting vulnerability in index.php rs parameter. Solution Update the plugin...
WordPress E-Commerce Predictive Search Plugin - Cross Site Scripting
Because of this vulnerability, the attackers can inject arbitrary JavaScript or HTML code. Solution Update the plugin...