Vulnerabilidades en bandido
6 resultadosCVE-2024-12049MEDIUMWoo Ukrposhta <= 1.17.11 - Reflected Cross-Site Scripting via order, post, and idd ParametersEPSS 0.4%CVE-2022-4974MEDIUMFreemius SDK <= 2.4.2 - Missing Authorization ChecksEPSS 0.4%CVE-2025-6720MEDIUMVchasno Kasa <= 1.0.3 - Unauthenticated Log File ClearingEPSS 0.4%CVE-2025-6721MEDIUMVchasno Kasa <= 1.0.3 - Missing Authorization to Unauthenticated Invoice GenerationEPSS 0.3%CVE-2026-2292MEDIUMMorkva UA Shipping <= 1.7.9 - Authenticated (Administrator+) Stored Cross-Site Scripting via 'Weight, kg' FieldEPSS 0.2%CVE-2025-12170MEDIUMCheckbox <= 2.8.10 - Missing Authorization to Unauthenticated Log ClearingEPSS 0.2%