CVE-2024-50448
- EPSS 0.13%
- Veröffentlicht 28.10.2024 18:15:06
- Zuletzt bearbeitet 08.11.2024 20:32:15
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in YITH YITH WooCommerce Product Add-Ons allows Reflected XSS.This issue affects YITH WooCommerce Product Add-Ons: from n/a through 4.14.1.
CVE-2024-35680
- EPSS 0.17%
- Veröffentlicht 10.06.2024 16:15:15
- Zuletzt bearbeitet 21.11.2024 09:20:38
Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') vulnerability in YITH YITH WooCommerce Product Add-Ons allows Code Injection.This issue affects YITH WooCommerce Product Add-Ons: from n/a through 4.9....
CVE-2023-49777
- EPSS 0.33%
- Veröffentlicht 31.12.2023 11:15:08
- Zuletzt bearbeitet 21.11.2024 08:33:49
Deserialization of Untrusted Data vulnerability in YITH YITH WooCommerce Product Add-Ons.This issue affects YITH WooCommerce Product Add-Ons: from n/a through 4.3.0.
CVE-2019-16251
- EPSS 0.51%
- Veröffentlicht 31.10.2019 17:15:10
- Zuletzt bearbeitet 21.11.2024 04:30:23
plugin-fw/lib/yit-plugin-panel-wc.php in the YIT Plugin Framework through 3.3.8 for WordPress allows authenticated options changes.