CVEs-PoC/2023/CVE-2023-3365.md at efebdd4f2d72a3494ec92163e9e88e00a3646b8a

CalvinBackup/CVEs-PoC

Fork 0

mirror of https://github.com/0xMarcio/cve.git synced 2026-06-03 17:08:02 +02:00

Files

T

0xMarcio cb00e1339f Update CVE list 2025-09-29 21:09

2025-09-29 21:09:30 +02:00

Description

The MultiParcels Shipping For WooCommerce WordPress plugin before 1.14.14 does not have authorisation when deleting shipment, allowing any authenticated users, such as subscriber to delete arbitrary shipment

POC

Reference

https://wpscan.com/vulnerability/21ce5baa-8085-4053-8d8b-f7d3e2ae70c1

Github

https://github.com/20142995/nuclei-templates

782 B Raw Blame History

CVE-2023-3365

Description

POC

Reference

Github

782 B

Raw Blame History