Lucene search
K

4 matches found

Positive Technologies
Positive Technologies
added 2026/04/08 12:0 a.m.7 views

PT-2026-31136

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Josh Kohlbach Advanced Coupons for WooCommerce Coupons advanced-coupons-for-woocommerce-free allows DOM-Based XSS.This issue affects Advanced Coupons for WooCommerce Coupons: from n/a through =...

6.5CVSS5.9AI score0.00156EPSS
Exploits0References3
NVD
NVD
added 2026/03/13 7:54 p.m.3 views

CVE-2026-31919

Missing Authorization vulnerability in Josh Kohlbach Advanced Coupons for WooCommerce Coupons advanced-coupons-for-woocommerce-free allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Advanced Coupons for WooCommerce Coupons: from n/a through = 4.7.1...

4.3CVSS0.0025EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/07/29 9:23 a.m.1 views

CVE-2025-6730 Bonanza – WooCommerce Free Gifts Lite <= 1.0.0 - Missing Authorization to Authenticated (Subscriber+) Opt In Success

The Bonanza – WooCommerce Free Gifts Lite plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the xlooptincall function in all versions up to, and including, 1.0.0. This makes it possible for authenticated attackers, with Subscriber-level...

4.3CVSS6.1AI score0.00184EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/07/29 9:23 a.m.8 views

CVE-2025-6730 Bonanza – WooCommerce Free Gifts Lite <= 1.0.0 - Missing Authorization to Authenticated (Subscriber+) Opt In Success

The Bonanza – WooCommerce Free Gifts Lite plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the xlooptincall function in all versions up to, and including, 1.0.0. This makes it possible for authenticated attackers, with Subscriber-level...

4.3CVSS0.00184EPSS
Exploits0References2
Rows per page
Query Builder