CVE-2025-10144

CVE-2025-10144 concerns the Perfect Brands for WooCommerce plugin for WordPress. Wordfence reports a time-based SQL Injection via the brands attribute of the products shortcode in all versions up to 3.6.2, caused by insufficient escaping of user-supplied input and inadequate preparation of the ex...

EUVD-2023-39873

Malicious code in bioql PyPI...

EUVD-2022-50199

Malicious code in bioql PyPI...

EUVD-2022-28896

Malicious code in bioql PyPI...

CVE-2023-35880

Cross-Site Request Forgery CSRF vulnerability in WooCommerce WooCommerce Brands plugin = 1.6.49 versions...

CVE-2024-11746

The Discover the Best Woocommerce Product Brands Plugin for WordPress – Woocommerce Brands Plugin plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'productbrand' shortcode in all versions up to, and including, 1.3.2 due to insufficient input sanitization and outp...

CVE-2024-11746

The Discover the Best Woocommerce Product Brands Plugin for WordPress – Woocommerce Brands Plugin plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'productbrand' shortcode in all versions up to, and including, 1.3.2 due to insufficient input sanitization and outp...

CVE-2024-11746

CVE-2024-11746 affects the WordPress plugin “Discover the Best Woocommerce Product Brands Plugin for WordPress – Woocommerce Brands Plugin” up to version 1.3.2. The issue is a Stored XSS via the product_brand shortcode due to insufficient input sanitization and output escaping on user-supplied at...

CVE-2024-11746 Discover the Best Woocommerce Product Brands Plugin for WordPress – Woocommerce Brands Plugin <= 1.3.2 - Authenticated (Contributor+) Stored Cross-Site Scripting

The Discover the Best Woocommerce Product Brands Plugin for WordPress – Woocommerce Brands Plugin plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'productbrand' shortcode in all versions up to, and including, 1.3.2 due to insufficient input sanitization and outp...

CVE-2023-44149 WordPress Brands for WooCommerce plugin <= 3.8.2.2 - Broken Access Control vulnerability

Missing Authorization vulnerability in BeRocket Brands for WooCommerce brands-for-woocommerce allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Brands for WooCommerce: from n/a through = 3.8.2.2...

CVE-2023-32746

Auth. contributor+ Stored Cross-Site Scripting XSS vulnerability in WooCommerce WooCommerce Brands plugin = 1.6.45 versions...

Cross site scripting

Auth. contributor+ Stored Cross-Site Scripting XSS vulnerability in WooCommerce WooCommerce Brands plugin = 1.6.45 versions...

CVE-2023-32746 WordPress WooCommerce Brands Plugin <= 1.6.45 is vulnerable to Cross Site Scripting (XSS)

Auth. contributor+ Stored Cross-Site Scripting XSS vulnerability in WooCommerce WooCommerce Brands plugin = 1.6.45 versions...

CVE-2023-32746

CVE-2023-32746: Stored Cross-Site Scripting in the WooCommerce Brands WordPress plugin (versions

CVE-2023-32746 WordPress WooCommerce Brands Plugin <= 1.6.45 is vulnerable to Cross Site Scripting (XSS)

Auth. contributor+ Stored Cross-Site Scripting XSS vulnerability in WooCommerce WooCommerce Brands plugin = 1.6.45 versions...

CVE-2023-35880

Cross-Site Request Forgery CSRF vulnerability in WooCommerce WooCommerce Brands plugin = 1.6.49 versions...

Cross site request forgery (csrf)

Cross-Site Request Forgery CSRF vulnerability in WooCommerce WooCommerce Brands plugin = 1.6.49 versions...

CVE-2023-35880

CVE-2023-35880: CSRF in WooCommerce Brands (WordPress plugin)

CVE-2023-35880 WordPress WooCommerce Brands Plugin <= 1.6.49 is vulnerable to Cross Site Request Forgery (CSRF)

Cross-Site Request Forgery CSRF vulnerability in WooCommerce WooCommerce Brands plugin = 1.6.49 versions...

CVE-2022-47437

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Branko Borilovic WSB Brands plugin = 1.1.8 versions...