B3NCLOUD ARTICLE INTELLIGENCE

ARTICLEVIEW

Zurück zu News
nvd.nist.gov
RISK: Mittel (4.0)

[Critical] CVE-2026-10580 – The Hippoo Mobile App for WooCommerce plugin for WordPress is vulnerable to Auth...

Critical CVE-2026-10580 The Hippoo Mobile App for WooCommerce plugin for WordPress is vulnerable to Authentication Bypass leading to Administrator Account Takeover in all versions up to and including 1.9.4. This is due to a logic conflation in HippooPermissions::get_user_permissions(), which...

#Sicherheitslücke
Original-Artikel öffnen Zurück zur Übersicht

VERWANDTEARTIKEL

CVE-2026-46400 - HAXCMS PHP has a File Upload Validation Bypass

2026-06-05 Mittel

CVE-2026-45779 - Open XDMoD Vulnerable to Unauthenticated SQL Injection Leading to Full Database Compromise

2026-06-05 Kritisch

CVE-2026-46398 - HAX CMS Missing Secure Flag on Cookie

2026-06-05 Mittel

CVE-2026-45758 - Malicious code in guardrails-ai 0.10.1 (supply chain compromise)

2026-06-05 Mittel

CVE-2026-45777 - Open XDMoD Vulnerable to Unauthenticated Remote Code Execution (RCE) via OS Command Injection

2026-06-05 Kritisch

CVE-2026-45778 - Open XDMoD Vulnerable to Reflected Cross-Site Scripting (XSS) in Password Reset

2026-06-05 Kritisch