Calgary, Alberta, Canada
sales@hackhalt.com
Free Download Free Download Free Download
Explore Pricing Explore Pricing Explore Pricing

Blog

"Prevention is cheaper than a breach"

Live Vulnerability Intelligence

Threat Database

Search CVEs, inspect descriptions, and open detail pages with AI-assisted technical context.

Total5
Critical0
High2
Medium3
Reset
Showing 1-5 of 5 records
Threat Entry Updated 2025-05-05

CVE-2023-3954 - Multiparcels Shipping For Woocommerce Plugin

The MultiParcels Shipping For WooCommerce WordPress plugin before 1.15.4 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin

PLUGIN Multiparcels Shipping For Woocommerce

CVE-2023-3954

MEDIUM CVSS 6.1 2023-08-21
Open Full Technical Breakdown
Threat Entry Updated 2025-05-05

CVE-2023-3671 - Multiparcels Shipping For Woocommerce Plugin

The MultiParcels Shipping For WooCommerce WordPress plugin before 1.15.4 does not sanitise and escape various parameters before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin

PLUGIN Multiparcels Shipping For Woocommerce

CVE-2023-3671

MEDIUM CVSS 6.1 2023-08-07
Open Full Technical Breakdown
Threat Entry Updated 2024-11-21

CVE-2023-2843 - Multiparcels Shipping For Woocommerce Plugin

The MultiParcels Shipping For WooCommerce WordPress plugin before 1.14.15 does not properly sanitize and escape a parameter before using it in an SQL statement, which could allow any authenticated users, such as subscribers, to perform SQL Injection attacks.

PLUGIN Multiparcels Shipping For Woocommerce

CVE-2023-2843

HIGH CVSS 8.8 2023-08-07
Open Full Technical Breakdown
Scroll to top