Morkva UA Shipping

CVEs (2)

CVE	Vendor / Product	Sev	Risk	CVSS	EPSS	KEV	Published	Description
CVE-2025-24685	Ihor Kit Morkva UA Shipping	Hig	0.53	8.1	0.01		Jan 27, 2025	Path Traversal: '.../...//' vulnerability in Ihor Kit Morkva UA Shipping morkva-ua-shipping allows PHP Local File Inclusion.This issue affects Morkva UA Shipping: from n/a through <= 1.0.18.
CVE-2026-2292	WordPress Morkva Ua Shipping	Med	0.29	4.4	0.00		Mar 4, 2026	The Morkva UA Shipping plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 1.7.9 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with…

CVE-2025-24685HigJan 27, 2025
Ihor Kit
Morkva UA Shipping
risk 0.53cvss 8.1epss 0.01
Path Traversal: '.../...//' vulnerability in Ihor Kit Morkva UA Shipping morkva-ua-shipping allows PHP Local File Inclusion.This issue affects Morkva UA Shipping: from n/a through <= 1.0.18.
CVE-2026-2292MedMar 4, 2026
WordPress
Morkva Ua Shipping
risk 0.29cvss 4.4epss 0.00
The Morkva UA Shipping plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 1.7.9 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with…