PatchSiren

Cargo RD CVE debriefs

These pages are published after PatchSiren validates generated defensive summaries against stored public CVE and source evidence.

CRITICAL Cargo RD CVE published 2026-06-17

CVE-2026-54815

A critical SQL injection vulnerability, tracked as CVE-2026-54815, was discovered in the Cargo Shipping Location for WooCommerce plugin. This issue allows for Blind SQL Injection and has a CVSS score of 9.3. The vulnerability exists due to improper neutralization of special elements used in SQL commands. The affected product is the Cargo Shipping Location for WooCommerce plugin, and users with untrusted u [truncated]