CVE-2026-27040

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in AA-Team WZone woozone allows Path Traversal.This issue affects WZone: from n/a through = 14.0.31...

EUVD-2026-15758

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in AA-Team WZone woozone allows Path Traversal.This issue affects WZone: from n/a through = 14.0.31...

EUVD-2026-15757

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in AA-Team WZone woozone allows Blind SQL Injection.This issue affects WZone: from n/a through = 14.0.31...

CVE-2026-27039

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in AA-Team WZone woozone allows Blind SQL Injection.This issue affects WZone: from n/a through = 14.0.31...

CVE-2026-27040

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in AA-Team WZone woozone allows Path Traversal.This issue affects WZone: from n/a through = 14.0.31...

CVE-2026-27040

CVE-2026-27040 affects the WordPress plugin WZone (AA-Team WZone woozone) up to version 14.0.31. The issue is a path traversal vulnerability caused by improper limitation of a pathname to a restricted directory, enabling access to files outside the intended scope. Multiple sources (NVD, Red Hat, ...

CVE-2026-27040 WordPress WZone plugin <= 14.0.31 - Arbitrary File Deletion vulnerability

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in AA-Team WZone woozone allows Path Traversal.This issue affects WZone: from n/a through = 14.0.31...

CVE-2026-27040 WordPress WZone plugin <= 14.0.31 - Arbitrary File Deletion vulnerability

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in AA-Team WZone woozone allows Path Traversal.This issue affects WZone: from n/a through = 14.0.31...

CVE-2026-27039 WordPress WZone plugin <= 14.0.31 - SQL Injection vulnerability

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in AA-Team WZone woozone allows Blind SQL Injection.This issue affects WZone: from n/a through = 14.0.31...

CVE-2026-27039

CVE-2026-27039 describes an SQL Injection vulnerability in the WooCommerce Amazon Affiliates plugin for WordPress (WooZone). The issue affects WooZone versions up to and including 14.0.31. The CVSS 3.1 vector is CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:L with a base score of 8.5 (HIGH), indicat...

CVE-2026-27039 WordPress WZone plugin <= 14.0.31 - SQL Injection vulnerability

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in AA-Team WZone woozone allows Blind SQL Injection.This issue affects WZone: from n/a through = 14.0.31...

WordPress plugin WZone 路径遍历漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows users to create personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be installed t...

WordPress plugin WZone SQL注入漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. WordPres...

PT-2026-27963

Name of the Vulnerable Software and Affected Versions AA-Team WZone woozone versions through 14.0.31 Description A flaw exists in AA-Team WZone woozone that allows for path traversal. This issue is due to improper limitation of a pathname to a restricted directory. The vulnerability could...

WordPress WZone plugin <= 14.0.31 - SQL Injection vulnerability

SQL Injection vulnerability discovered by Phat RiO - BlueRock in WordPress Plugin WZone versions = 14.0.31...

WordPress WZone plugin <= 14.0.31 - Arbitrary File Deletion vulnerability

Arbitrary File Deletion vulnerability discovered by Phat RiO - BlueRock in WordPress Plugin WZone versions = 14.0.31...

CVE-2026-25473

Missing Authorization vulnerability in AA-Team WZone woozone allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WZone: from n/a through = 14.0.31...

CVE-2026-25473

Missing Authorization vulnerability in AA-Team WZone woozone allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WZone: from n/a through = 14.0.31...

CVE-2026-25473

CVE-2026-25473 affects the WordPress WZone plugin versions up to and including 14.0.31, describing a Missing Authorization / Broken Access Control vulnerability in AA-Team WZone woozone due to incorrectly configured access control. Reported impact indicates potential issues with access control (I...

CVE-2026-25473 WordPress WZone plugin <= 14.0.31 - Broken Access Control vulnerability

Missing Authorization vulnerability in AA-Team WZone woozone allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WZone: from n/a through = 14.0.31...