17 matches found
CVE-2025-12975
The CVE-2025-12975 entry concerns CTX Feed – WooCommerce Product Feed Manager for WordPress (
WordPress plugin CTX Feed – WooCommerce Product Feed Manager 安全漏洞
WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be install...
EUVD-2023-56817
Malicious code in bioql PyPI...
EUVD-2025-24778
Malicious code in bioql PyPI...
CVE-2025-49887
Improper Control of Generation of Code 'Code Injection' vulnerability in WPFactory Product XML Feed Manager for WooCommerce product-xml-feeds-for-woocommerce allows Remote Code Inclusion.This issue affects Product XML Feed Manager for WooCommerce: from n/a through = 2.9.3...
CVE-2025-49887 WordPress Product XML Feed Manager for WooCommerce Plugin <= 2.9.3 - Remote Code Execution (RCE) Vulnerability
Improper Control of Generation of Code 'Code Injection' vulnerability in WPFactory Product XML Feed Manager for WooCommerce product-xml-feeds-for-woocommerce allows Remote Code Inclusion.This issue affects Product XML Feed Manager for WooCommerce: from n/a through = 2.9.3...
WordPress plugin Product XML Feed Manager for WooCommerce 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation, and WordPress plugin is an application plugin. A lack of authorization vulnerability exists in WordPress Product XML Feed Manager for WooCommerce, which can be exploited by an attacker to cause the exploitation of a...
CVE-2023-52144
Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in RexTheme Product Feed Manager.This issue affects Product Feed Manager: from n/a through 7.3.15...
CVE-2023-52144
Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in RexTheme Product Feed Manager.This issue affects Product Feed Manager: from n/a through 7.3.15...
CVE-2023-52144 WordPress Product Feed Manager plugin <= 7.3.15 - Directory Traversal vulnerability
Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in RexTheme Product Feed Manager.This issue affects Product Feed Manager: from n/a through 7.3.15...
CVE-2023-52144 WordPress Product Feed Manager plugin <= 7.3.15 - Directory Traversal vulnerability
Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in RexTheme Product Feed Manager.This issue affects Product Feed Manager: from n/a through 7.3.15...
PT-2024-14433 · Rextheme · Rextheme Product Feed Manager
Name of the Vulnerable Software and Affected Versions: RexTheme Product Feed Manager versions n/a through 7.3.15 Description: The issue is related to an Improper Limitation of a Pathname to a Restricted Directory, also known as a 'Path Traversal' vulnerability. This vulnerability affects RexTheme...
WordPress Plugin Product Feed Manager 路径遍历漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. WordPress is a blogging platform developed using the PHP language, which supports personal blogs on PHP and MySQL servers.WordPress plugin is an...
Product Feed Manager < 7.3.16 - Authenticated (Admin+) Directory Traversal
Description The Product Feed Manager – WooCommerce to Google Shopping, Social Catalogs, and 170+ Popular Marketplaces plugin for WordPress is vulnerable to Path Traversal in all versions up to, and including, 7.3.15 via the vulnerable parameter 'logKey'. This makes it possible for authenticated...
WordPress Product Feed Manager Plugin <= 7.3.15 is vulnerable to Directory Traversal
Software Product Feed Manager Type Plugin Vulnerable versions = 7.3.15 Fixed in 7.3.16 OWASP Top 10 A4: Insecure Design Classification Directory Traversal CVE CVE-2023-52144 Patch priority Low CVSS severity Low 5.5 Developer WPFunnels Team PSID 19683c0fecc1 Credits Muhammad Daffa Required privile...
WordPress Product Feed Manager Plugin <= 2.2.7 is vulnerable to Cross Site Scripting (XSS)
Software Product Feed Manager Type Plugin Vulnerable versions = 2.2.7 Fixed in 3.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer WPFunnels Team PSID 5d8a4ef78a56 Credits Rafie Muhammad Patchstack Required...
CVE-2022-46797
CVE-2022-46797 concerns the WordPress plugin Conversios All-in-one Google Analytics, Pixels and Product Feed Manager for WooCommerce, affected versions are 5.2.3, with Patchstack listing 5.2.4 as the fix. Exploit details or in-the-wild activity are not provided in the supplied documents. Recommen...