4 matches found
CVE-2024-13472
creationtimestamp| type| source ---|---|--- 2025-01-31 10:15:44+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lgzrdohrw62b 2025-01-31 11:24:13+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/3643 2025-01-31 12:52:05+00:00| seen| https://t.me/cvedetector/16930...
CVE-2024-13472
The The WooCommerce Product Table Lite plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 3.9.4. This is due to the software allowing users to execute an action that does not properly validate a value before running doshortcode. This makes it...
CVE-2024-13472 WooCommerce Product Table Lite <= 3.9.4 - Unauthenticated Arbitrary Shortcode Execution & Reflected Cross-Site Scripting
The The WooCommerce Product Table Lite plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 3.9.4. This is due to the software allowing users to execute an action that does not properly validate a value before running doshortcode. This makes it...
CVE-2024-13472
CVE-2024-13472 affects the WordPress plugin “WooCommerce Product Table Lite” (versions up to and including 3.9.4). The issue allows unauthenticated attackers to achieve arbitrary shortcode execution due to improper validation before running do_shortcode, and the same sc_attrs parameter is vulnera...