2 matches found
CVE-2024-30462
Cross-Site Request Forgery CSRF vulnerability in realmag777 HUSKY – Products Filter for WooCommerce formerly WOOF.This issue affects HUSKY – Products Filter for WooCommerce formerly WOOF: from n/a through 1.3.5.1...
CVE-2024-1795 HUSKY – Products Filter for WooCommerce Professional <= 1.3.5.2 - Authenticated (Contributor+) SQL Injection
The HUSKY – Products Filter for WooCommerce Professional plugin for WordPress is vulnerable to SQL Injection via the 'name' parameter in the woof shortcode in all versions up to, and including, 1.3.5.2 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation ...