VYPR

Small Package Quotes

by Eniture

Source repositories

CVEs (3)

  • CVE-2024-13534HigFeb 19, 2025
    risk 0.49cvss 7.5epss 0.00

    The Small Package Quotes – Worldwide Express Edition plugin for WordPress is vulnerable to SQL Injection via the 'edit_id' and 'dropship_edit_id' parameters in all versions up to, and including, 5.2.18 due to insufficient escaping on the user supplied parameter and lack of…

  • CVE-2024-13532HigFeb 12, 2025
    risk 0.49cvss 7.5epss 0.00

    The Small Package Quotes – Purolator Edition plugin for WordPress is vulnerable to SQL Injection via the 'edit_id' and 'dropship_edit_id' parameters in all versions up to, and including, 3.6.4 due to insufficient escaping on the user supplied parameter and lack of sufficient…

  • CVE-2025-26918HigMar 3, 2025
    risk 0.39cvss 7.1epss 0.00

    Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in enituretechnology Small Package Quotes – Unishippers Edition small-package-quotes-unishippers-edition allows Reflected XSS.This issue affects Small Package Quotes –…