Lucene search
+L

587 matches found

RedhatCVE
RedhatCVE
added 2025/11/14 10:11 a.m.8 views

CVE-2025-64380

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Pluggabl Booster for WooCommerce woocommerce-jetpack allows Stored XSS.This issue affects Booster for WooCommerce: from n/a through = 7.3.2...

6.5CVSS6AI score0.00155EPSS
Exploits0References1
EUVD
EUVD
added 2025/11/13 12:31 p.m.5 views

EUVD-2025-163769

Missing Authorization vulnerability in Pluggabl Booster for WooCommerce woocommerce-jetpack allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Booster for WooCommerce: from n/a through = 7.4.0...

4.3CVSS6.4AI score0.00182EPSS
Exploits0References2
EUVD
EUVD
added 2025/11/13 12:31 p.m.5 views

EUVD-2025-163768

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Pluggabl Booster for WooCommerce woocommerce-jetpack allows Stored XSS.This issue affects Booster for WooCommerce: from n/a through = 7.3.2...

6.5CVSS5.5AI score0.00155EPSS
Exploits0References2
NVD
NVD
added 2025/11/13 10:15 a.m.4 views

CVE-2025-64380

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Pluggabl Booster for WooCommerce woocommerce-jetpack allows Stored XSS.This issue affects Booster for WooCommerce: from n/a through = 7.3.2...

6.5CVSS0.00155EPSS
Exploits0References1
OSV
OSV
added 2025/11/13 10:15 a.m.6 views

CVE-2025-64380

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Pluggabl Booster for WooCommerce woocommerce-jetpack allows Stored XSS.This issue affects Booster for WooCommerce: from n/a through = 7.3.2...

6.5CVSS5.8AI score0.00155EPSS
Exploits0References1
OSV
OSV
added 2025/11/13 10:15 a.m.4 views

CVE-2025-64379

Missing Authorization vulnerability in Pluggabl Booster for WooCommerce woocommerce-jetpack allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Booster for WooCommerce: from n/a through = 7.4.0...

4.3CVSS5.8AI score0.00182EPSS
Exploits0References1
NVD
NVD
added 2025/11/13 10:15 a.m.4 views

CVE-2025-64379

Missing Authorization vulnerability in Pluggabl Booster for WooCommerce woocommerce-jetpack allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Booster for WooCommerce: from n/a through = 7.4.0...

4.3CVSS0.00182EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/11/13 9:24 a.m.7 views

CVE-2025-64379 WordPress Booster for WooCommerce plugin <= 7.4.0 - Broken Access Control vulnerability

Missing Authorization vulnerability in Pluggabl Booster for WooCommerce woocommerce-jetpack allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Booster for WooCommerce: from n/a through = 7.4.0...

4.3CVSS0.00182EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/11/13 9:24 a.m.6 views

CVE-2025-64380 WordPress Booster for WooCommerce plugin <= 7.3.2 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Pluggabl Booster for WooCommerce woocommerce-jetpack allows Stored XSS.This issue affects Booster for WooCommerce: from n/a through = 7.3.2...

6.5CVSS0.00155EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/11/13 9:24 a.m.3 views

CVE-2025-64380 WordPress Booster for WooCommerce plugin <= 7.3.2 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Pluggabl Booster for WooCommerce woocommerce-jetpack allows Stored XSS.This issue affects Booster for WooCommerce: from n/a through = 7.3.2...

6.5CVSS5.6AI score0.00155EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/11/13 9:24 a.m.4 views

CVE-2025-64379 WordPress Booster for WooCommerce plugin <= 7.4.0 - Broken Access Control vulnerability

Missing Authorization vulnerability in Pluggabl Booster for WooCommerce woocommerce-jetpack allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Booster for WooCommerce: from n/a through = 7.4.0...

4.3CVSS6.6AI score0.00182EPSS
Exploits0References1
CVE
CVE
added 2025/11/13 9:24 a.m.14 views

CVE-2025-64379

CVE-2025-64379 affects Booster for WooCommerce (WordPress plugin powering the WooCommerce extension) up to version 7.4.0. The root cause is missing/incorrectly configured access control security levels, enabling a broken/misconfigured authorization vulnerability. Impact is potential improper acce...

4.3CVSS6.6AI score0.00182EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2025/11/13 9:24 a.m.19 views

CVE-2025-64380

CVE-2025-64380 affects WordPress Booster for WooCommerce (woocommerce-jetpack) plugin, specifically versions up to and including 7.3.2. The root cause is improper input handling during web page generation, leading to a stored cross-site scripting (XSS) vulnerability. This means malicious script p...

6.5CVSS5.6AI score0.00155EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2025/11/13 12:0 a.m.4 views

WordPress plugin Booster for WooCommerce 安全漏洞

WordPress Booster for WooCommerce Plugin is a multi-functional plugin designed specifically for the WooCommerce e-commerce platform, offering more than 100 features including PDF invoices, product variants, wish lists, and other tools designed to streamline e-commerce operations and enhance user...

6.5CVSS5.9AI score0.00155EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/11/13 12:0 a.m.4 views

WordPress plugin Booster for WooCommerce 安全漏洞

WordPress Booster for WooCommerce Plugin is a multi-functional plugin designed specifically for the WooCommerce e-commerce platform, offering more than 100 features including PDF invoices, product variants, wish lists, and other tools designed to streamline e-commerce operations and enhance user...

4.3CVSS6.4AI score0.00182EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/11/13 12:0 a.m.7 views

PT-2025-46812

Name of the Vulnerable Software and Affected Versions Booster for WooCommerce versions through 7.4.0 Description An issue exists in Booster for WooCommerce where incorrectly configured access control security levels can lead to missing authorization. This allows for potential exploitation of the...

4.3CVSS6.5AI score0.00182EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2025/11/13 12:0 a.m.10 views

PT-2025-46813

Name of the Vulnerable Software and Affected Versions Pluggabl Booster for WooCommerce versions through 7.3.2 Description The software contains a flaw related to improper input handling during web page creation, which can lead to Cross-site Scripting XSS. This allows for the injection of maliciou...

6.5CVSS6.3AI score0.00155EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/11/07 5:32 p.m.6 views

CVE-2025-64196

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Pluggabl Booster for WooCommerce woocommerce-jetpack allows Reflected XSS.This issue affects Booster for WooCommerce: from n/a through = 7.2.5...

7.1CVSS6.4AI score0.00174EPSS
Exploits0References1
EUVD
EUVD
added 2025/11/06 6:32 p.m.6 views

EUVD-2025-38055

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Pluggabl Booster for WooCommerce woocommerce-jetpack allows Reflected XSS.This issue affects Booster for WooCommerce: from n/a through = 7.2.5...

7.1CVSS5.9AI score0.00174EPSS
Exploits0References2
NVD
NVD
added 2025/11/06 4:16 p.m.12 views

CVE-2025-64196

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Pluggabl Booster for WooCommerce woocommerce-jetpack allows Reflected XSS.This issue affects Booster for WooCommerce: from n/a through = 7.2.5...

7.1CVSS0.00174EPSS
Exploits0References1
Rows per page
Query Builder