Lucene search
K

379 matches found

Patchstack
Patchstack
added 2019/10/31 12:0 a.m.16 views

WordPress YITH Product Size Charts for WooCommerce plugin <=1.1.12 - Authenticated Settings Change (YITH Plugin Framework <=3.3.8) vulnerability

Authenticated Settings Change YITH Plugin Framework =3.3.8 vulnerability found by Jerome Bruandet in WordPress YITH Product Size Charts for WooCommerce plugin versions =1.1.12. Solution Update the WordPress YITH Product Size Charts for WooCommerce plugin to the latest available version at least...

4.3CVSS3.3AI score0.00948EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2019/10/31 12:0 a.m.10 views

WordPress YITH WooCommerce Compare plugin <=1.3.14 - Authenticated Settings Change (YITH Plugin Framework <=3.3.8) vulnerability

Authenticated Settings Change YITH Plugin Framework =3.3.8 vulnerability found by Jerome Bruandet in WordPress YITH WooCommerce Compare plugin versions =1.3.14. Solution Update the WordPress YITH WooCommerce Compare plugin to the latest available version at least 1.3.15...

4.3CVSS3.2AI score0.00948EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2019/10/31 12:0 a.m.10 views

WordPress YITH Advanced Refund System for WooCommerce plugin <=1.0.11 - Authenticated Settings Change (YITH Plugin Framework <=3.3.8) vulnerability

Authenticated Settings Change YITH Plugin Framework =3.3.8 vulnerability found by Jerome Bruandet in WordPress YITH Advanced Refund System for WooCommerce plugin versions =1.0.11. Solution Update the WordPress YITH Advanced Refund System for WooCommerce plugin to the latest available version at...

4.3CVSS3.8AI score0.00948EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2019/10/31 12:0 a.m.11 views

WordPress YITH WooCommerce Affiliates plugin <=1.6.2 - Authenticated Settings Change (YITH Plugin Framework <=3.3.8) vulnerability

Authenticated Settings Change YITH Plugin Framework =3.3.8 vulnerability found by Jerome Bruandet in WordPress YITH WooCommerce Affiliates plugin versions =1.6.2. Solution Update the WordPress YITH WooCommerce Affiliates plugin to the latest available version at least 1.6.3...

4.3CVSS4.1AI score0.00948EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2019/10/31 12:0 a.m.13 views

WordPress YITH WooCommerce Questions and Answers plugin <=1.1.9 - Authenticated Settings Change (YITH Plugin Framework <=3.3.8) vulnerability

Authenticated Settings Change YITH Plugin Framework =3.3.8 vulnerability found by Jerome Bruandet in WordPress YITH WooCommerce Questions and Answers plugin versions =1.1.9. Solution Update the WordPress YITH WooCommerce Questions and Answers plugin to the latest available version at least 1.2.0...

4.3CVSS3.6AI score0.00948EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2019/10/31 12:0 a.m.29 views

WordPress YITH WooCommerce Request A Quote plugin <=1.4.8 - Authenticated Settings Change (YITH Plugin Framework <=3.3.8) vulnerability

Authenticated Settings Change YITH Plugin Framework =3.3.8 vulnerability found by Jerome Bruandet in WordPress YITH WooCommerce Request A Quote plugin versions =1.4.8. Solution Update the WordPress YITH WooCommerce Request A Quote plugin to the latest available version at least 1.4.9...

4.3CVSS3.6AI score0.00948EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2019/10/31 12:0 a.m.30 views

WordPress YITH WooCommerce Zoom Magnifier plugin <=1.3.11 - Authenticated Settings Change (YITH Plugin Framework <=3.3.8) vulnerability

Authenticated Settings Change YITH Plugin Framework =3.3.8 vulnerability found by Jerome Bruandet in WordPress YITH WooCommerce Zoom Magnifier plugin versions =1.3.11. Solution Update the WordPress YITH WooCommerce Zoom Magnifier plugin to the latest available version at least 1.3.12...

4.3CVSS3.3AI score0.00948EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2019/10/31 12:0 a.m.11 views

WordPress YITH WooCommerce PDF Invoice and Shipping List plugin <=1.2.12 - Authenticated Settings Change (YITH Plugin Framework <=3.3.8) vulnerability

Authenticated Settings Change YITH Plugin Framework =3.3.8 vulnerability found by Jerome Bruandet in WordPress YITH WooCommerce PDF Invoice and Shipping List plugin versions =1.2.12. Solution Update the WordPress YITH WooCommerce PDF Invoice and Shipping List plugin to the latest available versio...

4.3CVSS2.9AI score0.00948EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2019/10/31 12:0 a.m.32 views

WordPress YITH WooCommerce Multi Vendor plugin <=3.4.0 - Authenticated Settings Change (YITH Plugin Framework <=3.3.8) vulnerability

Authenticated Settings Change YITH Plugin Framework =3.3.8 vulnerability found by Jerome Bruandet in WordPress YITH WooCommerce Multi Vendor plugin versions =3.4.0. Solution Update the WordPress YITH WooCommerce Multi Vendor plugin to the latest available version at least 3.4.1...

4.3CVSS3.3AI score0.00948EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2019/09/26 1:15 a.m.14 views

CVE-2015-9429

The yith-maintenance-mode plugin before 1.2.0 for WordPress has CSRF with resultant XSS via the wp-admin/themes.php?page=yith-maintenance-mode panelpage parameter...

6.5CVSS6.4AI score0.00867EPSS
Exploits1References3
Prion
Prion
added 2019/09/26 1:15 a.m.13 views

Cross site request forgery (csrf)

The yith-maintenance-mode plugin before 1.2.0 for WordPress has CSRF with resultant XSS via the wp-admin/themes.php?page=yith-maintenance-mode panelpage parameter...

4.3CVSS6.2AI score0.00867EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2019/09/26 12:52 a.m.16 views

CVE-2015-9429

The yith-maintenance-mode plugin before 1.2.0 for WordPress has CSRF with resultant XSS via the wp-admin/themes.php?page=yith-maintenance-mode panelpage parameter...

6.3AI score0.00867EPSS
Exploits1References3
CVE
CVE
added 2019/09/26 12:52 a.m.138 views

CVE-2015-9429

CVE-2015-9429 concerns the WordPress plugin YITH Maintenance Mode (before 1.2.0). The issue is a CSRF that leads to an XSS via the parameter panel_page in the page wp-admin/themes.php?page=yith-maintenance-mode. Affected products/versions: WordPress plugin versions prior to 1.2.0. Documented impa...

6.5CVSS6.2AI score0.00867EPSS
Exploits1References3Affected Software1
Patchstack
Patchstack
added 2018/01/17 12:0 a.m.63 views

WordPress YITH WooCommerce Wishlist plugin <=2.1.2 - Authenticated SQL Injection (SQLi) vulnerability

Authenticated SQL Injection SQLi vulnerability found by Sucuri team in WordPress YITH WooCommerce Wishlist plugin versions =2.1.2. Solution Update the WordPress YITH WooCommerce Wishlist plugin to the latest available version at least 2.1.2...

2.8AI score
Exploits0References1Affected Software1
Check Point Advisories
Check Point Advisories
added 2018/01/17 12:0 a.m.7 views

WordPress YITH WooCommerce Wishlist Plugin SQL Injection

An SQL injection vulnerability has been reported in WordPress YITH WooCommerce Wishlist Plugin. Successful exploitation of this vulnerability would allow a remote attacker to execute arbitrary SQL commands on the affected system...

4.6AI score
Exploits0
0day.today
0day.today
added 2016/11/09 12:0 a.m.44 views

WordPress YITH WooCommerce Compare 2.0.9 PHP Object Injection Vulnerability

WordPress YITH WooCommerce Compare plugin version 2.0.9 suffers from a PHP object injection vulnerability. ------------------------------------------------------------------------ YITH WooCommerce Compare WordPress Plugin unauthenticated PHP Object injection vulnerability...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2016/11/08 12:0 a.m.68 views

WordPress YITH WooCommerce Compare 2.0.9 PHP Object Injection

------------------------------------------------------------------------ YITH WooCommerce Compare WordPress Plugin unauthenticated PHP Object injection vulnerability ------------------------------------------------------------------------ Yorick Koster, June 2016...

0.4AI score
Exploits0
WPVulnDB
WPVulnDB
added 2016/11/08 12:0 a.m.33 views

YITH WooCommerce Compare <= 2.0.9 - Unauthenticated PHP Object injection

The YITH WooCommerce Compare WordPress plugin was affected by an Unauthenticated PHP Object injection security vulnerability...

2.7AI score
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2015/08/21 12:0 a.m.7 views

WordPress YITH Maintenance Mode Plugin <= 1.1.4 - Cross-Site Scripting

Because of this vulnerability, authenticated administrators can store HTML and JS code. Solution Update the plugin...

1.9AI score
Exploits0References1Affected Software1
Rows per page
Query Builder