WordPress WooCommerce <3.1.2 - Arbitrary Function Call

WordPress WooCommerce plugin before 3.1.2 does not have authorisation and CSRF checks in the wptadminupdatenoticeoption AJAX action available to both unauthenticated and authenticated users, as well as does not validate the callback parameter, allowing unauthenticated attackers to call arbitrary...

EUVD-2024-36753

Malicious code in bioql PyPI...

EUVD-2023-52801

Malicious code in bioql PyPI...

EUVD-2024-43343

Malicious code in bioql PyPI...

EUVD-2025-2707

Malicious code in bioql PyPI...

CVE-2024-49277

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Saiful Islam UltraAddons Elementor Lite ultraaddons-elementor-lite allows Stored XSS.This issue affects UltraAddons Elementor Lite: from n/a through = 2.0.2...

CVE-2024-10813

The Product Table for WooCommerce by CodeAstrology wooproducttable.com plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 3.5.1 via the vardumptable parameter. This makes it possible for unauthenticated attackers var data...

CVE-2023-48768

Cross-Site Request Forgery CSRF vulnerability in CodeAstrology Team Quantity Plus Minus Button for WooCommerce by CodeAstrology.This issue affects Quantity Plus Minus Button for WooCommerce by CodeAstrology: from n/a through 1.1.9...

CVE-2025-22307

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Saiful Islam Product Table for WooCommerce woo-product-table allows Reflected XSS.This issue affects Product Table for WooCommerce: from n/a through = 4.0.3...

CVE-2025-22307

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Saiful Islam Product Table for WooCommerce woo-product-table allows Reflected XSS.This issue affects Product Table for WooCommerce: from n/a through = 4.0.3...

CVE-2025-22307 WordPress Product Table for WooCommerce plugin <= 4.0.3 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Saiful Islam Product Table for WooCommerce woo-product-table allows Reflected XSS.This issue affects Product Table for WooCommerce: from n/a through = 4.0.3...

CVE-2025-22307 WordPress Product Table for WooCommerce plugin <= 3.5.6 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in CodeAstrology Team Product Table for WooCommerce allows Reflected XSS.This issue affects Product Table for WooCommerce: from n/a through 3.5.6...

CVE-2024-10813

The Product Table for WooCommerce by CodeAstrology wooproducttable.com plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 3.5.1 via the vardumptable parameter. This makes it possible for unauthenticated attackers var data...

CVE-2024-10813 Product Table for WooCommerce by CodeAstrology (wooproducttable.com) <= 3.5.1 - Information Exposure

The Product Table for WooCommerce by CodeAstrology wooproducttable.com plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 3.5.1 via the vardumptable parameter. This makes it possible for unauthenticated attackers var data...

CVE-2024-10813

CVE-2024-10813 affects the WordPress plugin “Product Table for WooCommerce by CodeAstrology” (wooproducttable.com). The vulnerability is an information-exposure flaw in which unauthenticated attackers can access sensitive data via the var_dump_table parameter. It affects all versions up to and in...

CVE-2024-10813 Product Table for WooCommerce by CodeAstrology (wooproducttable.com) <= 3.5.1 - Information Exposure

The Product Table for WooCommerce by CodeAstrology wooproducttable.com plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 3.5.1 via the vardumptable parameter. This makes it possible for unauthenticated attackers var data...

WordPress plugin Product Table for WooCommerce by CodeAstrology 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation, a blogging platform developed in the PHP language. The platform supports personal blog sites on servers running PHP and MySQL. WordPress plugin is an application plugin. A security vulnerability exists in the WordPress...

PT-2024-16570 · Codeastrology · The Product Table For Woocommerce

Name of the Vulnerable Software and Affected Versions: The Product Table for WooCommerce by CodeAstrology plugin for WordPress versions up to, and including, 3.5.1 Description: The issue allows unauthenticated attackers to expose sensitive information via the var dump table parameter. This makes ...

CVE-2024-49277

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Saiful Islam UltraAddons Elementor Lite ultraaddons-elementor-lite allows Stored XSS.This issue affects UltraAddons Elementor Lite: from n/a through = 2.0.2...

CVE-2024-49277 WordPress UltraAddons – Elementor Addons plugin <= 2.0.2 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Saiful Islam UltraAddons Elementor Lite ultraaddons-elementor-lite allows Stored XSS.This issue affects UltraAddons Elementor Lite: from n/a through = 2.0.2...