Lucene search
K

10 matches found

RedhatCVE
RedhatCVE
added 2026/06/05 7:42 p.m.12 views

CVE-2025-14767

The WPC Badge Management for WooCommerce plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'text' attribute of the wpcbmbestseller shortcode in all versions up to, and including, 3.1.6 due to insufficient input sanitization and output escaping. This makes it possible for...

5.5CVSS5.7AI score0.00207EPSS
Exploits0References1
NVD
NVD
added 2026/05/13 8:16 a.m.11 views

CVE-2025-14767

The WPC Badge Management for WooCommerce plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'text' attribute of the wpcbmbestseller shortcode in all versions up to, and including, 3.1.6 due to insufficient input sanitization and output escaping. This makes it possible for...

5.5CVSS0.00207EPSS
Exploits0References4
EUVD
EUVD
added 2026/05/13 7:44 a.m.58 views

EUVD-2025-209823

The WPC Badge Management for WooCommerce plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'text' attribute of the wpcbmbestseller shortcode in all versions up to, and including, 3.1.6 due to insufficient input sanitization and output escaping. This makes it possible for...

5.5CVSS6AI score0.00207EPSS
Exploits0References4
Cvelist
Cvelist
added 2026/05/13 7:44 a.m.71 views

CVE-2025-14767 WPC Badge Management for WooCommerce <= 3.1.6 - Authenticated (Shop Manager+) Stored Cross-Site Scripting via 'text' Attribute

The WPC Badge Management for WooCommerce plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'text' attribute of the wpcbmbestseller shortcode in all versions up to, and including, 3.1.6 due to insufficient input sanitization and output escaping. This makes it possible for...

5.5CVSS0.00207EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/05/13 12:0 a.m.10 views

PT-2026-40581

The WPC Badge Management for WooCommerce plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'text' attribute of the wpcbm best seller shortcode in all versions up to, and including, 3.1.6 due to insufficient input sanitization and output escaping. This makes it possible for...

5.5CVSS6AI score0.00207EPSS
Exploits0References4
Cvelist
Cvelist
added 2024/06/09 9:1 a.m.24 views

CVE-2024-30537 WordPress WPC Badge Management for WooCommerce plugin <= 2.4.0 - Broken Access Control vulnerability

Missing Authorization vulnerability in WPClever WPC Badge Management for WooCommerce.This issue affects WPC Badge Management for WooCommerce: from n/a through 2.4.0...

4.3CVSS0.00323EPSS
Exploits0References1
CVE
CVE
added 2024/06/09 9:1 a.m.54 views

CVE-2024-30537

CVE-2024-30537 concerns the WPC Badge Management for WooCommerce plugin (WordPress) with versions up to 2.4.0. Descriptions in connected sources identify a Missing Authorization / Broken Access Control vulnerability that could allow unauthorized access. Public references indicate the issue affect...

8.8CVSS5.1AI score0.00323EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2024/06/09 9:1 a.m.18 views

CVE-2024-30537 WordPress WPC Badge Management for WooCommerce plugin <= 2.4.0 - Broken Access Control vulnerability

Missing Authorization vulnerability in WPClever WPC Badge Management for WooCommerce.This issue affects WPC Badge Management for WooCommerce: from n/a through 2.4.0...

4.3CVSS7AI score0.00323EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/06/09 12:0 a.m.5 views

PT-2024-23466 · Wpclever · Wpc Badge Management For Woocommerce

Name of the Vulnerable Software and Affected Versions: WPC Badge Management for WooCommerce versions 2.4.0 and earlier Description: The issue is related to a Missing Authorization vulnerability in WPClever WPC Badge Management for WooCommerce. This vulnerability allows unauthorized access due to...

8.8CVSS9.2AI score0.00323EPSS
Exploits0References5
Patchstack
Patchstack
added 2024/03/29 9:54 a.m.7 views

WordPress WPC Badge Management for WooCommerce plugin <= 2.4.0 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Abdi Pranata Patchstack Alliance in WordPress Plugin WPC Badge Management for WooCommerce versions = 2.4.0...

8.8CVSS8.6AI score0.00323EPSS
Exploits0Affected Software1
Rows per page
Query Builder