12 matches found
CVE-2026-9235
The DHL eCommerce (Benelux) for WooCommerce WordPress plugin (up to version 2.2.3) is vulnerable to unauthorized modification and data loss due to missing capability checks and missing nonce verification in create_label() and delete_label(). These functions are tied to wp_ajax_dhlpwc_label_create...
EUVD-2024-47590
Malicious code in bioql PyPI...
EUVD-2024-30620
Malicious code in bioql PyPI...
CVE-2024-32834
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in WebToffee WooCommerce Shipping Label allows Stored XSS.This issue affects WooCommerce Shipping Label: from n/a through 2.3.8...
CVE-2024-32834
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in WebToffee WooCommerce Shipping Label allows Stored XSS.This issue affects WooCommerce Shipping Label: from n/a through 2.3.8...
CVE-2024-32834
CVE-2024-32834 involves a Stored XSS in the WebToffee WooCommerce Shipping Label plugin. Affected: WooCommerce Shipping Label (plugin) from n/a through 2.3.8. Root cause per description: Improper neutralization of input during web page generation. Impact is Cross‑Site Scripting, with Confidential...
CVE-2024-32834 WordPress WooCommerce Shipping Label plugin <= 2.3.8 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in WebToffee WooCommerce Shipping Label allows Stored XSS.This issue affects WooCommerce Shipping Label: from n/a through 2.3.8...
CVE-2024-32834 WordPress WooCommerce Shipping Label plugin <= 2.3.8 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in WebToffee WooCommerce Shipping Label allows Stored XSS.This issue affects WooCommerce Shipping Label: from n/a through 2.3.8...
WordPress plugin WooCommerce Shipping Label 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...
WordPress WooCommerce Shipping Label plugin <= 2.3.8 - Cross Site Scripting (XSS) vulnerability
Cross Site Scripting XSS vulnerability discovered by Joshua Chan Patchstack Alliance in WordPress Plugin WooCommerce Shipping Label versions = 2.3.8...
WordPress WooCommerce Shipping Label Plugin <= 2.3.8 is vulnerable to Cross Site Scripting (XSS)
Software WooCommerce Shipping Label Type Plugin Vulnerable versions = 2.3.8 Fixed in 2.3.9 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-32834 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID a0358e31252f Credits Joshua Chan Required...
Threat Outbreak Alert: Fake Portuguese Pornographic Video Email Messages on April 22, 2014
Medium Alert ID: 26252 First Published: 2012 June 26 21:46 GMT Last Updated: 2014 April 23 14:15 GMT Version: 3 Summary Cisco Security has detected significant activity related to Portuguese-language spam email messages that claim to contain an attachment to a pornographic video file for the...