RSS   Vulnerabilities for 'Wp-invoice'   RSS

2019-09-20
 
CVE-2016-11011

CWE-269
 

 
The wp-invoice plugin before 4.1.1 for WordPress has wpi_update_user_option privilege escalation.

 
 
CVE-2016-11010

CWE-668
 

 
The wp-invoice plugin before 4.1.1 for WordPress has incorrect access control over wpi_twocheckout payer metadata updates.

 
 
CVE-2016-11009

CWE-668
 

 
The wp-invoice plugin before 4.1.1 for WordPress has incorrect access control over wpi_interkassa payer metadata updates.

 
 
CVE-2016-11008

CWE-668
 

 
The wp-invoice plugin before 4.1.1 for WordPress has incorrect access control over wpi_paypal payer metadata updates.

 
 
CVE-2016-11007

CWE-668
 

 
The wp-invoice plugin before 4.1.1 for WordPress has incorrect access control over wpi_user_id for invoice retrieval.

 
 
CVE-2016-11006

CWE-668
 

 
The wp-invoice plugin before 4.1.1 for WordPress has incorrect access control for admin_init settings changes.

 

 >>> Vendor: Usabilitydynamics 2 Products
Wp-invoice
Wp-crm


Copyright 2024, cxsecurity.com

 

Back to Top