Lucene search
K

7 matches found

Nuclei
Nuclei
added 14 hours ago16 views

Abandoned Cart Lite for WooCommerce < 5.2.0 - Cross-Site Scripting

The Abandoned Cart Lite for WooCommerce and Abandoned Cart Pro for WooCommerce plugins for WordPress are vulnerable to Stored Cross-Site Scripting via multiple parameters in versions up to, and including, 5.1.3 and 7.12.0 respectively, due to insufficient input sanitization and output escaping. i...

7.2CVSS6.4AI score0.01353EPSS
Exploits1References4
NVD
NVD
added 2023/06/22 2:15 a.m.15 views

CVE-2019-25152

The Abandoned Cart Lite for WooCommerce and Abandoned Cart Pro for WooCommerce plugins for WordPress are vulnerable to Stored Cross-Site Scripting via multiple parameters in versions up to, and including, 5.1.3 and 7.12.0 respectively, due to insufficient input sanitization and output escaping...

7.2CVSS6.3AI score0.01353EPSS
Exploits1References4
Cvelist
Cvelist
added 2023/06/22 1:49 a.m.51 views

CVE-2019-25152 Abandoned Cart Lite for WooCommerce < 5.2.0 and Abandoned Cart Pro for WooCommerce < 7.13.0 - Stored Cross-Site Scripting

The Abandoned Cart Lite for WooCommerce and Abandoned Cart Pro for WooCommerce plugins for WordPress are vulnerable to Stored Cross-Site Scripting via multiple parameters in versions up to, and including, 5.1.3 and 7.12.0 respectively, due to insufficient input sanitization and output escaping...

7.2CVSS6.3AI score0.01353EPSS
Exploits1References4
CVE
CVE
added 2023/06/22 1:49 a.m.50 views

CVE-2019-25152

The CVE-2019-25152 issue affects Abandoned Cart Lite for WooCommerce (≤5.1.3) and Abandoned Cart Pro for WooCommerce (≤7.12.0). The root cause is improper input sanitization and output escaping, enabling stored XSS via multiple parameters and potentially allowing unauthenticated script execution ...

7.2CVSS5.8AI score0.01353EPSS
Exploits1References4Affected Software2
Vulnrichment
Vulnrichment
added 2023/06/22 1:49 a.m.10 views

CVE-2019-25152 Abandoned Cart Lite for WooCommerce < 5.2.0 and Abandoned Cart Pro for WooCommerce < 7.13.0 - Stored Cross-Site Scripting

The Abandoned Cart Lite for WooCommerce and Abandoned Cart Pro for WooCommerce plugins for WordPress are vulnerable to Stored Cross-Site Scripting via multiple parameters in versions up to, and including, 5.1.3 and 7.12.0 respectively, due to insufficient input sanitization and output escaping...

7.2CVSS6.5AI score0.01353EPSS
Exploits1References4
Patchstack
Patchstack
added 2023/06/22 12:0 a.m.11 views

WordPress Abandoned Cart Pro Plugin <= 7.12.0 is vulnerable to Cross Site Scripting (XSS)

Software Abandoned Cart Pro Type Plugin Vulnerable versions = 7.12.0 Fixed in 7.13.0 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2019-25152 Patch priority High CVSS severity High 7.2 Developer Claim ownership PSID e46f5b307c8a Credits WordFence Requir...

7.2CVSS6.4AI score0.01353EPSS
Exploits1References2Affected Software1
VulnCheck KEV
VulnCheck KEV
added 2019/03/11 12:0 a.m.4 views

VulnCheck KEV: CVE-2019-25152

The Abandoned Cart Lite for WooCommerce and Abandoned Cart Pro for WooCommerce plugins for WordPress are vulnerable to Stored Cross-Site Scripting via multiple parameters in versions up to, and including, 5.1.3 and 7.12.0 respectively, due to insufficient input sanitization and output escaping...

7.2CVSS6.3AI score0.01353EPSS
Exploits1References1
Rows per page
Query Builder