VYPR

SEUR plugin

by SEUR OFICIAL

CVEs (1)

  • CVE-2024-9201Oct 10, 2024
    risk 0.00cvss epss 0.00

    The SEUR plugin, in its versions prior to 2.5.11, is vulnerable to time-based SQL injection through the use of the ‘id_order’ parameter of the ‘/modules/seur/ajax/saveCodFee.php’ endpoint.