Rapid0Nion

#9142of 53,640
29.9Total CVSS
Vulnerabilities · 6
Medium
6
PT-2026-42434
5.3
2026-05-21
WordPress · Tobias Cf7 Wow Styler · CVE-2026-27393
**Name of the Vulnerable Software and Affected Versions** Tobias CF7 WOW Styler versions prior to 1.7.6 **Description** A missing authorization issue allows for the exploitation of incorrectly configured access control security levels. **Recommendations** Update to a version newer than 1.7.6.
PT-2026-20741
4.3
2026-02-19
WordPress · Upsellwp · CVE-2026-25419
**Name of the Vulnerable Software and Affected Versions** UpsellWP versions through 2.2.3 **Description** A missing authorization issue exists in flycart UpsellWP checkout-upsell-and-order-bumps, allowing exploitation of incorrectly configured access control security levels. **Recommendations** Update UpsellWP to a version newer than 2.2.3.
PT-2026-4419
4.3
2026-01-23
Ecwid · Ecwid Shopping Cart · CVE-2026-24580
**Name of the Vulnerable Software and Affected Versions** Ecwid Shopping Cart versions through 7.0.5 **Description** The Ecwid Shopping Cart software contains a flaw related to incorrectly configured access control security levels, potentially allowing unauthorized access. The issue allows exploitation due to missing authorization. **Recommendations** Update Ecwid Shopping Cart to a version newer than 7.0.5.
PT-2026-4420
5.4
2026-01-23
WordPress · Wp Swings Points/Rewards For Woocommerce · CVE-2026-24581
**Name of the Vulnerable Software and Affected Versions** WP Swings Points and Rewards for WooCommerce versions through 2.9.5 **Description** An authorization issue exists in WP Swings Points and Rewards for WooCommerce, allowing exploitation due to incorrectly configured access control security levels. **Recommendations** Update WP Swings Points and Rewards for WooCommerce to a version newer than 2.9.5.
PT-2026-4229
5.3
2026-01-22
WordPress · Apimo Connector · CVE-2026-22445
**Name of the Vulnerable Software and Affected Versions** Apimo Connector versions through 2.6.4 **Description** An authorization issue exists in the Apimo Connector plugin. This allows exploitation of incorrectly configured access control security levels. **Recommendations** Update Apimo Connector to a version later than 2.6.4.
PT-2025-53877
5.3
2025-12-30
Unknown · O2Oe E-Invoice App Malaysia · CVE-2025-68988
**Name of the Vulnerable Software and Affected Versions** o2oe E-Invoice App Malaysia versions through 1.1.0 **Description** The o2oe E-Invoice App Malaysia application contains a flaw that allows the retrieval of embedded sensitive data, potentially exposing system information to unauthorized parties. **Recommendations** Update to a version later than 1.1.0.