Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Biteship — Vulnerabilities & Security Advisories 3

Browse all 3 CVE security advisories affecting Biteship. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Biteship provides e-commerce shipping solutions for online businesses. Historically, the platform has been susceptible to remote code execution, cross-site scripting, and privilege escalation vulnerabilities, with three CVEs documented to date. Security assessments reveal that input validation weaknesses and improper access controls have been recurring issues. While no major public security incidents have been reported, the presence of multiple high-severity vulnerabilities in a relatively short timeframe suggests potential security gaps in their development lifecycle. Organizations using Biteship should implement compensating controls and monitor for security updates, as the platform's exposure to critical vulnerabilities could pose risks to both merchant and customer data.

Top products by Biteship: Biteship: Plugin Ongkos Kirim Kurir Instant, Reguler, Kargo Plugin Pengiriman WooCommerce Kurir Reguler, Instan, Kargo – Biteship
CVE IDTitleCVSSSeverityPublished
CVE-2025-5816 Plugin Pengiriman WooCommerce Kurir Reguler, Instan, Kargo – Biteship <= 3.2.0 - Insecure Direct Object Reference to Authenticated (Subscriber+) View Order Tracking Details — Plugin Pengiriman WooCommerce Kurir Reguler, Instan, Kargo – BiteshipCWE-862 4.3 Medium2025-07-18
CVE-2024-24866 WordPress Biteship Plugin <= 2.2.24 is vulnerable to Cross Site Scripting (XSS) — Biteship: Plugin Ongkos Kirim Kurir Instant, Reguler, KargoCWE-79 7.1 High2024-02-05
CVE-2023-49767 WordPress Biteship Plugin <= 2.2.24 is vulnerable to Cross Site Scripting (XSS) — Biteship: Plugin Ongkos Kirim Kurir Instant, Reguler, KargoCWE-79 5.9 Medium2023-12-15

This page lists every published CVE security advisory associated with Biteship. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.