WordPress eCommerce Product Catalog <3.0.39 - Cross-Site Scripting

WordPress eCommerce Product Catalog plugin before 3.0.39 contains a cross-site scripting vulnerability. The plugin does not escape the ic-settings-search parameter before outputting it back in the page in an attribute. This can allow an attacker to steal cookie-based authentication credentials an...

CVE-2008-1841

creationtimestamp| type| source ---|---|--- 2026-06-19 16:45:42+00:00| exploited| https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/482f9788-fce3-405e-a7e0-d06a21629e87 2026-06-23 14:04:17+00:00| exploited|...

CVE-2007-6436

creationtimestamp| type| source ---|---|--- 2026-06-19 16:45:42+00:00| exploited| https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/e18c467b-1cd8-4a6d-903d-00a0b3ca8504 2026-06-23 14:04:17+00:00| exploited|...

CVE-2007-5722

creationtimestamp| type| source ---|---|--- 2026-06-19 16:45:42+00:00| exploited| https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/6792df86-691e-4a71-8d28-00ccfbafdf49 2026-06-23 14:04:18+00:00| exploited|...

CVE-2008-1092

creationtimestamp| type| source ---|---|--- 2026-06-19 16:45:42+00:00| exploited| https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/b3532d4f-8337-4947-9d70-0ff69b988c66 2026-06-23 14:04:17+00:00| exploited|...

CVE-2006-4326

creationtimestamp| type| source ---|---|--- 2026-06-19 16:45:42+00:00| exploited| https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/352332dc-aacc-4feb-af4a-f78272b32dbd 2026-06-23 14:04:18+00:00| exploited|...

CVE-2008-3919

creationtimestamp| type| source ---|---|--- 2026-06-19 16:45:41+00:00| exploited| https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/cca2375b-506e-4998-aad6-9b70dda2703f 2026-06-23 14:04:17+00:00| exploited|...

CVE-2008-5227

creationtimestamp| type| source ---|---|--- 2026-06-19 16:45:41+00:00| exploited| https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/285694e8-10a5-46cc-97cd-29aacc231b7e 2026-06-23 14:04:16+00:00| exploited|...

CVE-2008-3873

creationtimestamp| type| source ---|---|--- 2026-06-19 16:45:41+00:00| exploited| https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/bde4e7df-3e08-4d63-ba93-727ea818337c 2026-06-23 14:04:17+00:00| exploited|...

CVE-2009-1308

creationtimestamp| type| source ---|---|--- 2026-06-19 16:45:40+00:00| exploited| https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/7e95f5d8-3356-4723-915c-ad13fef8ae89 2026-06-23 14:04:16+00:00| exploited|...

CVE-2009-1481

creationtimestamp| type| source ---|---|--- 2026-06-19 16:45:40+00:00| exploited| https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/390aa6a0-7e4c-41f8-874b-8351520d12c6 2026-06-23 14:04:16+00:00| exploited|...

CVE-2010-1165

creationtimestamp| type| source ---|---|--- 2026-06-19 16:45:39+00:00| exploited| https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/2d7e369a-9a2e-4515-bfc0-49bd8f1aceca 2026-06-23 14:04:11+00:00| exploited|...

CVE-2010-3889

creationtimestamp| type| source ---|---|--- 2026-06-19 16:45:39+00:00| exploited| https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/61bdff58-1d5c-4f34-80c6-4ceeea80b6d9 2026-06-23 14:04:10+00:00| exploited|...

CVE-2011-0226

creationtimestamp| type| source ---|---|--- 2026-06-19 16:45:38+00:00| exploited| https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/e3e1d012-3d32-4167-9e0d-af5041040ea3 2026-06-23 14:04:10+00:00| exploited|...

CVE-2011-1331

creationtimestamp| type| source ---|---|--- 2026-06-19 16:45:38+00:00| exploited| https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/534fcde9-fb28-4ddc-88c1-7057f7c09c10 2026-06-23 14:04:10+00:00| exploited|...

CVE-2011-2900

creationtimestamp| type| source ---|---|--- 2026-06-19 16:45:38+00:00| exploited| https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/9fe6b8c6-d805-49d3-9814-7ada5f8edf5d 2026-06-23 14:04:09+00:00| exploited|...

CVE-2009-5076

creationtimestamp| type| source ---|---|--- 2026-06-19 16:45:38+00:00| exploited| https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/2a17ab4f-bc4a-4e5b-8097-ae7b48f80bcd 2026-06-23 14:04:11+00:00| exploited|...

CVE-2011-1752

creationtimestamp| type| source ---|---|--- 2026-06-19 16:45:38+00:00| exploited| https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/6befce64-77dd-43ae-a94c-234e922a9841 2026-06-23 14:04:10+00:00| exploited|...

CVE-2012-1071

creationtimestamp| type| source ---|---|--- 2026-06-19 16:45:37+00:00| exploited| https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/b0e65c95-7b1d-4d46-86dc-0d2379d32924 2026-06-23 14:04:09+00:00| exploited|...

CVE-2012-1557

creationtimestamp| type| source ---|---|--- 2026-06-19 16:45:37+00:00| exploited| https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/a49bc561-1c7a-4f1a-8d0c-7b36e09d0cbf 2026-06-23 14:04:09+00:00| exploited|...