3 matches found
EUVD-2024-50558
Malicious code in bioql PyPI...
CVE-2024-12049
CVE-2024-12049 refers to a vulnerability in the WordPress plugin Woo Ukrposhta where a Reflected Cross-Site Scripting (XSS) can be triggered via the order , post , and idd parameters. The issue affects all versions up to and including 1.17.11 and arises from insufficient input sanitization and ou...
CVE-2024-12049 Woo Ukrposhta <= 1.17.11 - Reflected Cross-Site Scripting via order, post, and idd Parameters
The Woo Ukrposhta plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'order', 'post', and 'idd' parameters in all versions up to, and including, 1.17.11 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to...