VYPR

Shipengine Shipping Quotes

by WordPress

CVEs (1)

  • CVE-2024-13531HigFeb 12, 2025
    risk 0.42cvss 7.5epss 0.00

    The ShipEngine Shipping Quotes plugin for WordPress is vulnerable to SQL Injection via the 'edit_id' parameter in all versions up to, and including, 1.0.7 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. …