3 matches found
CVE-2024-8393 Woocommerce Blocks – Woolook <= 1.7.0 - Authenticated (Admin+) Local File Inclusion
The Woocommerce Blocks – Woolook plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 1.7.0 via the via the 'tab' parameter. This makes it possible for authenticated attackers, with Administrator-level access and above, to include and execute arbitrary...
CVE-2024-54375 WordPress Woolook plugin <= 1.7.0 - Local File Inclusion vulnerability
Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Sabri Woolook woolook allows PHP Local File Inclusion.This issue affects Woolook: from n/a through = 1.7.0...
WordPress Woolook plugin <= 1.7.0 - Local File Inclusion vulnerability
Local File Inclusion vulnerability discovered by tahu.datar Patchstack Alliance in WordPress Plugin Woolook versions = 1.7.0...