Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.2
CVE-2024-11465
- EPSS 2.08%
- Published 07.01.2025 05:15:13
- Last modified 25.02.2025 22:53:14
The Custom Product Tabs for WooCommerce plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 1.8.5 via deserialization of untrusted input in the 'yikes_woo_products_tabs' post meta parameter. This makes it ...
4.8
CVE-2022-43463
- EPSS 0.11%
- Published 18.11.2022 19:15:31
- Last modified 21.11.2024 07:26:32
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Custom Product Tabs for WooCommerce plugin <= 1.7.9 on WordPress.
5.3
CVE-2022-28666
- EPSS 0.17%
- Published 21.07.2022 17:15:08
- Last modified 21.11.2024 06:57:41
Broken Access Control vulnerability in YIKES Inc. Custom Product Tabs for WooCommerce plugin <= 1.7.7 at WordPress leading to &yikes-the-content-toggle option update.
1