Lucene search
K

9 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 8:39 a.m.8 views

CVE-2024-4038

The The Back In Stock Notifier for WooCommerce | WooCommerce Waitlist Pro plugin for WordPress for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 5.3.1. This is due to the plugin for WordPress allowing users to execute an action that does not proper...

6.5CVSS7.6AI score0.00491EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/11/01 12:0 a.m.6 views

PT-2024-30323 · WordPress · Waitlist Woocommerce

Name of the Vulnerable Software and Affected Versions: Waitlist Woocommerce Back in stock notifier versions n/a through 2.6 Description: The issue affects the Waitlist Woocommerce Back in stock notifier plugin due to a Missing Authorization vulnerability. This vulnerability allows exploitation of...

4.3CVSS6.5AI score0.00328EPSS
Exploits0References3
Patchstack
Patchstack
added 2024/09/16 7:15 a.m.4 views

WordPress Waitlist Woocommerce ( Back in stock notifier ) plugin <= 2.7.5 - Reflected Cross-Site Scripting vulnerability

Reflected Cross-Site Scripting vulnerability discovered by vgo0 in WordPress Plugin Waitlist Woocommerce Back in stock notifier versions = 2.7.5...

6.1CVSS6.3AI score0.00354EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2024/09/14 4:15 a.m.2 views

CVE-2024-8724

The Waitlist Woocommerce Back in stock notifier plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of addqueryarg without appropriate escaping on the URL in all versions up to, and including, 2.7.5. This makes it possible for unauthenticated attackers to inject...

6.1CVSS5.9AI score0.00354EPSS
Exploits0References3
Cvelist
Cvelist
added 2024/09/14 3:19 a.m.34 views

CVE-2024-8724 Waitlist Woocommerce ( Back in stock notifier ) <= 2.7.5 - Reflected Cross-Site Scripting

The Waitlist Woocommerce Back in stock notifier plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of addqueryarg without appropriate escaping on the URL in all versions up to, and including, 2.7.5. This makes it possible for unauthenticated attackers to inject...

6.1CVSS0.00354EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2024/09/13 12:0 a.m.7 views

PT-2024-39203 · WordPress · Waitlist Woocommerce

Name of the Vulnerable Software and Affected Versions: The Waitlist Woocommerce Back in stock notifier plugin for WordPress versions up to, and including, 2.7.5 Description: The issue is related to Reflected Cross-Site Scripting due to the use of add query arg without appropriate escaping on the...

6.1CVSS6.5AI score0.00354EPSS
Exploits0References9
Patchstack
Patchstack
added 2024/08/07 12:0 a.m.15 views

WordPress Waitlist Woocommerce ( Back in stock notifier ) Plugin <= 2.6 is vulnerable to Broken Access Control

Software Waitlist Woocommerce Back in stock notifier Type Plugin Vulnerable versions = 2.6 Fixed in 2.6.1 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2024-43134 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 01b4cf6b7218 Credits Abd...

4.3CVSS6.3AI score0.00328EPSS
Exploits0References2Affected Software1
CNNVD
CNNVD
added 2024/05/14 12:0 a.m.5 views

WordPress plugin The Back In Stock Notifier for WooCommerce 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A security vulnerability exists in the WordPre...

6.5CVSS7.5AI score0.00491EPSS
Exploits0References4
Patchstack
Patchstack
added 2024/05/08 2:8 a.m.8 views

WordPress Back In Stock Notifier for WooCommerce plugin <= 5.3.1 - Unauthenticated Arbitrary Shortcode Execution vulnerability

Unauthenticated Arbitrary Shortcode Execution vulnerability discovered by stealthcopter in WordPress Plugin Back In Stock Notifier for WooCommerce versions = 5.3.1...

6.5CVSS7.1AI score0.00491EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder