CVE-2024-13513
- EPSS 0.52%
- Veröffentlicht 15.02.2025 08:15:07
- Zuletzt bearbeitet 25.02.2025 03:42:05
The Oliver POS – A WooCommerce Point of Sale (POS) plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 2.4.2.3 via the logging functionality. This makes it possible for unauthenticated attackers ...
CVE-2024-0702
- EPSS 0.1%
- Veröffentlicht 29.02.2024 01:43:25
- Zuletzt bearbeitet 04.03.2025 12:24:19
The Oliver POS – A WooCommerce Point of Sale (POS) plugin for WordPress is vulnerable to unauthorized access due to missing capability checks on several functions hooked via AJAX in the includes/class-pos-bridge-install.php file in all versions up to...
CVE-2024-1954
- EPSS 0.1%
- Veröffentlicht 28.02.2024 09:15:43
- Zuletzt bearbeitet 04.03.2025 12:24:19
The Oliver POS – A WooCommerce Point of Sale (POS) plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2.4.1.8. This is due to missing or incorrect nonce validation in the includes/class-pos-bridge-i...