2 matches found
CVE-2026-12941
The MultiVendorX – WooCommerce Multivendor Marketplace AI Powered Solutions plugin for WordPress is vulnerable to generic SQL Injection via the 'orderby' parameter in all versions up to, and including, 5.0.9 due to insufficient escaping on the user supplied parameter and lack of sufficient...
Exploit for Improper Restriction of XML External Entity Reference in Adobe Commerce
A Cosmicsting POC...