Lucene search
K

9 matches found

CVE
CVE
added 6 days ago11 views

CVE-2026-56013

The CVE describes an unauthenticated Insecure Direct Object References (IDOR) in the WordPress License Manager for WooCommerce plugin, affected versions up to 3.0.15. The vulnerability stems from insecure direct object references that could allow unauthenticated access to license data. Connected ...

6.5CVSS5.8AI score0.00235EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/09/05 1:44 p.m.11 views

CVE-2025-58788 WordPress License Manager for WooCommerce Plugin <= 3.0.12 - SQL Injection Vulnerability

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Saad Iqbal License Manager for WooCommerce license-manager-for-woocommerce allows Blind SQL Injection.This issue affects License Manager for WooCommerce: from n/a through = 3.0.12...

7.6CVSS0.00346EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/09/05 1:44 p.m.3 views

CVE-2025-58788 WordPress License Manager for WooCommerce Plugin <= 3.0.12 - SQL Injection Vulnerability

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Saad Iqbal License Manager for WooCommerce license-manager-for-woocommerce allows Blind SQL Injection.This issue affects License Manager for WooCommerce: from n/a through = 3.0.12...

7.6CVSS5.9AI score0.00346EPSS
Exploits0References1
Patchstack
Patchstack
added 2025/09/05 1:18 p.m.6 views

WordPress License Manager for WooCommerce Plugin <= 3.0.12 - SQL Injection Vulnerability

SQL Injection Vulnerability discovered by Que Thanh Tuan Blue Rock in WordPress Plugin License Manager for WooCommerce versions = 3.0.12...

7.6CVSS7.7AI score0.00346EPSS
Exploits0Affected Software1
RedhatCVE
RedhatCVE
added 2025/05/22 8:31 p.m.4 views

CVE-2021-24244

An AJAX action registered by the WPBakery Page Builder Visual Composer Clipboard WordPress plugin before 4.5.8 did not have capability checks, allowing low privilege users, such as subscribers, to update the license options key, email...

6.5CVSS6.6AI score0.00938EPSS
Exploits2References1
Vulnrichment
Vulnrichment
added 2025/04/17 3:47 p.m.5 views

CVE-2025-32522 WordPress License Manager for WooCommerce plugin <= 3.0.9 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in WPExperts.io License Manager for WooCommerce allows Reflected XSS. This issue affects License Manager for WooCommerce: from n/a through 3.0.9...

7.1CVSS7AI score0.00235EPSS
Exploits0References1
Patchstack
Patchstack
added 2025/04/10 1:33 p.m.4 views

WordPress License Manager for WooCommerce plugin <= 3.0.9 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by Peter Thaleikis in WordPress Plugin License Manager for WooCommerce versions = 3.0.9...

7.1CVSS6.9AI score0.00235EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2024/06/20 12:0 a.m.11 views

WordPress License Manager for WooCommerce Plugin <= 3.0.6 is vulnerable to Sensitive Data Exposure

Software License Manager for WooCommerce Type Plugin Vulnerable versions = 3.0.6 Fixed in 3.0.7 OWASP Top 10 A3: Sensitive Data Exposure Classification Sensitive Data Exposure CVE CVE-2024-1639 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 0b1e43ddb6ac Credits Lucio Sá...

6.5CVSS6.6AI score0.00394EPSS
Exploits0References3Affected Software1
ThreatPost
ThreatPost
added 2019/01/30 4:59 p.m.66 views

Stealthy Malware Disguises Itself as a WordPress License Key

UPDATE A spam-injecting malware is targeting WordPress site owners by disguising itself as a legitimate license key for a WordPress design theme. According to analysis from Sucuri, a customer opened a malware removal ticket reporting “some weird spam URLs injected onto their WordPress website.”...

7.1AI score
Exploits0References5
Rows per page
Query Builder