Lucene search
K

18 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 11:58 a.m.5 views

CVE-2018-19319

SRCMS 3.0.0 allows CSRF via admin.php?m=Admin=gifts=update to change goods prices with the super administrator's privileges...

6.5CVSS7AI score0.00422EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2018-11017

Malware in sbrugna...

6.5CVSS6.6AI score0.00422EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2021-34206

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.00802EPSS
Exploits3References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2021-34203

Malicious code in bioql PyPI...

4.3CVSS5.1AI score0.00608EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2025/05/22 8:32 p.m.5 views

CVE-2021-4376

The WooCommerce Multi Currency plugin for WordPress is vulnerable to Missing Authorization in versions up to, and including, 2.1.17. This makes it possible for authenticated attackers to change the price of a product to an arbitrary value...

4.3CVSS6AI score0.00608EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/04/24 10:48 a.m.13 views

CVE-2023-23976 WordPress RegistrationMagic plugin <= 5.1.9.2 - Arbitrary Price Change

Incorrect Default Permissions vulnerability in Metagauss RegistrationMagic allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects RegistrationMagic: from n/a through 5.1.9.2...

7.5CVSS7AI score0.00459EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/04/24 10:48 a.m.16 views

CVE-2023-23976 WordPress RegistrationMagic plugin <= 5.1.9.2 - Arbitrary Price Change

Incorrect Default Permissions vulnerability in Metagauss RegistrationMagic allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects RegistrationMagic: from n/a through 5.1.9.2...

7.5CVSS7.8AI score0.00459EPSS
Exploits0References1
Code423n4
Code423n4
added 2023/12/08 12:0 a.m.7 views

Reentrancy issue. User can easily mint more than allowed presale, bypassing merkle root limit

Lines of code Vulnerability details Impact Lack of reentrancy protection and code not follow Checks, Effects, Interactions pattern guideline. Here are the Effects stuff happen after Interactions affected by reentrancy: tokensMintedAllowlistAddress: tracking presale minted NFT per address...

7.3AI score
Exploits0
Prion
Prion
added 2023/06/07 2:15 a.m.13 views

Authorization

The WooCommerce Multi Currency plugin for WordPress is vulnerable to Missing Authorization in versions up to, and including, 2.1.17. This makes it possible for authenticated attackers to change the price of a product to an arbitrary value...

4CVSS4.6AI score0.00608EPSS
Exploits0References4Affected Software1
Code423n4
Code423n4
added 2022/02/06 12:0 a.m.10 views

No minOutAmount amount checks when buying

Lines of code Vulnerability details The tokenOutPrice can be changed with the setTokenOutPrice even if the sale is already running. Users might accept the current token price, send a purchase transaction, and before it is mined the token price can be un-intentionally changed. The user might recei...

6.8AI score
Exploits0
Code423n4
Code423n4
added 2021/09/29 12:0 a.m.9 views

Router would fail when adding liquidity to index Pool

Handle broccoli Vulnerability details Impact TridentRouter is easy to fail when trying to provide liquidity to an index pool. Users would not get extra lp if they are not providing lp at the pool's spot price. It's the same design as uniswap v2. However, uniswap's v2 handle's the dirty part...

6.9AI score
Exploits0
ThreatPost
ThreatPost
added 2021/09/13 6:8 p.m.33 views

WooCommerce Multi Currency Bug Allows Shoppers to Change eCommerce Pricing

A security vulnerability in the WooCommerce Multi Currency plugin could allow any customer to change the pricing for products in online stores. WooCommerce is a popular eCommerce plugin for WordPress-powered websites; the Multi Currency plugin from Envato meanwhile allows e-tailers using...

7.3AI score
Exploits0References8
Patchstack
Patchstack
added 2021/09/13 12:0 a.m.6 views

WordPress WooCommerce Multi Currency - Currency Switcher premium plugin <= 2.1.17 - Authenticated Product Price Change vulnerability

Authenticated Product Price Change vulnerability discovered by Jerome Bruandet NinTechNet in WordPress WooCommerce Multi Currency - Currency Switcher premium plugin versions = 2.1.17. Solution Update the WordPress WooCommerce Multi Currency - Currency Switcher premium plugin to the latest availab...

2.6AI score
Exploits0References2Affected Software1
WPVulnDB
WPVulnDB
added 2021/09/13 12:0 a.m.14 views

WooCommerce Multi Currency < 2.1.18 - Authenticated Product Price Change

The plugin was vulnerable to Authenticated Product Price Change, which could allow customers to change the price of all products...

4AI score
Exploits0References2Affected Software1
Code423n4
Code423n4
added 2021/07/05 12:0 a.m.8 views

distributePriceChange might revert

Handle gpersoon Vulnerability details Impact The function distributePriceChange includes the following statement: lastGvtAssets = gvtAssets.addcurrentTotalAssets.subtotalAssets; If you look at this: lastGvtAssets = gvtAssets.addcurrentTotalAssets.subgvtAssets.addpwrdAssets; lastGvtAssets =...

6.9AI score
Exploits0
NVD
NVD
added 2018/11/16 7:29 p.m.20 views

CVE-2018-19319

SRCMS 3.0.0 allows CSRF via admin.php?m=Admin&c=gifts&a=update to change goods prices with the super administrator's privileges...

6.5CVSS6.5AI score0.00422EPSS
Exploits1References1
Hacker One
Hacker One
added 2017/07/27 2:38 p.m.23 views

OLX: I found a way to instantly take over ads by other users and change them (IDOR)

A local LetGo webpage was vulnerable to Insecure Data Object Reference issue which could have lead to ad hijack or settings change price, description, location. @kciredor discovered this vulnerability and notified us about this. We would like to thank you for this report. Please do not hesitate t...

0.2AI score
Exploits0
Cvelist
Cvelist
added 2006/10/12 12:0 a.m.18 views

CVE-2006-5246

Eazy Cart allows remote attackers to change prices and other critical fields via unspecified vectors to easycart.php, probably including the price parameter. NOTE: some details are obtained from third party information...

6.7AI score0.01495EPSS
Exploits0References7
Rows per page
Query Builder