VYPR

Small Package Quotes – Purolator Edition

by WordPress

CVEs (1)

  • CVE-2024-13532HigFeb 12, 2025
    risk 0.49cvss 7.5epss 0.00

    The Small Package Quotes – Purolator Edition plugin for WordPress is vulnerable to SQL Injection via the 'edit_id' and 'dropship_edit_id' parameters in all versions up to, and including, 3.6.4 due to insufficient escaping on the user supplied parameter and lack of sufficient…