Lucene search
K

8 matches found

CNNVD
CNNVD
added 2024/08/12 12:0 a.m.5 views

WordPress plugin wp-cart-for-digital-products 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

5.4CVSS6.6AI score0.00218EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2024/08/10 12:0 a.m.2 views

PT-2024-37409 · WordPress · Wp-Cart-For-Digital-Products

Name of the Vulnerable Software and Affected Versions: wp-cart-for-digital-products versions prior to 8.5.6 Description: The issue is related to a Reflected Cross-Site Scripting problem. It occurs because a parameter is not properly sanitised and escaped before being outputted back in the page...

5.4CVSS5.9AI score0.00378EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2024/08/09 12:0 a.m.4 views

PT-2024-37411 · WordPress · Wp-Cart-For-Digital-Products

Name of the Vulnerable Software and Affected Versions: wp-cart-for-digital-products versions prior to 8.5.6 Description: The issue concerns the lack of CSRF checks in certain areas, potentially allowing attackers to trick logged-in users into performing unintended actions through CSRF attacks...

5.4CVSS6.5AI score0.00218EPSS
Exploits1References4
OSV
OSV
added 2024/07/15 6:15 a.m.4 views

CVE-2024-6073

The wp-cart-for-digital-products WordPress plugin before 8.5.5 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin...

6.1CVSS5.8AI score0.00317EPSS
Exploits1References1
CVE
CVE
added 2024/07/15 6:0 a.m.58 views

CVE-2024-6074

CVE-2024-6074 relates to the WordPress plugin wp-cart-for-digital-products (pre-8.5.5). The vulnerability is a Reflected XSS caused by failing to sanitize/escape a parameter before outputting it on the page, potentially exploitable against admin/high-privilege users. Affected versions:

6.1CVSS6.5AI score0.00336EPSS
Exploits1References1Affected Software1
CNNVD
CNNVD
added 2024/07/15 12:0 a.m.4 views

WordPress plugin wp-cart-for-digital-products security vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

6.1CVSS6.8AI score0.00336EPSS
Exploits1References2
CNNVD
CNNVD
added 2024/07/15 12:0 a.m.5 views

WordPress plugin wp-cart-for-digital-products security vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

8.8CVSS6.8AI score0.00366EPSS
Exploits1References2
CNNVD
CNNVD
added 2024/07/15 12:0 a.m.5 views

WordPress plugin wp-cart-for-digital-products security vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

6.1CVSS6.8AI score0.00317EPSS
Exploits1References2
Rows per page
Query Builder