CVE-2025-5103
- EPSS 0.04%
- Veröffentlicht 03.06.2025 08:21:54
- Zuletzt bearbeitet 10.07.2025 14:20:40
The Ultimate Gift Cards for WooCommerce plugin for WordPress is vulnerable to boolean-based SQL Injection via the 'default_price' and 'product_id' parameters in all versions up to, and including, 3.1.4 due to insufficient escaping on the user supplie...
CVE-2024-11423
- EPSS 21.64%
- Veröffentlicht 08.01.2025 11:15:06
- Zuletzt bearbeitet 08.01.2025 11:15:06
The Ultimate Gift Cards for WooCommerce – Create WooCommerce Gift Cards, Gift Vouchers, Redeem & Manage Digital Gift Coupons. Offer Gift Certificates, Schedule Gift Cards, and Use Advance Coupons With Personalized Templates plugin for WordPress is vu...
CVE-2024-1857
- EPSS 0.19%
- Veröffentlicht 16.03.2024 09:15:06
- Zuletzt bearbeitet 21.11.2024 08:51:28
The Ultimate Gift Cards for WooCommerce – Create, Redeem & Manage Digital Gift Certificates with Personalized Templates plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 2.6.6 via the wps_wgm_p...
CVE-2021-4391
- EPSS 0.09%
- Veröffentlicht 01.07.2023 05:15:15
- Zuletzt bearbeitet 21.11.2024 06:37:35
The Ultimate Gift Cards for WooCommerce plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 2.1.1. This is due to missing or incorrect nonce validation on the mwb_wgm_save_post() function. This makes it ...