Lucene search
K

12 matches found

VulnCheck KEV
VulnCheck KEV
added 2026/04/17 12:0 a.m.4 views

VulnCheck KEV: CVE-2026-25455

Missing Authorization vulnerability in PickPlugins Product Slider for WooCommerce woocommerce-products-slider allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Product Slider for WooCommerce: from n/a through = 1.13.61...

6.5CVSS5.1AI score0.00315EPSS
In wildExploits0References2
RedhatCVE
RedhatCVE
added 2026/03/26 5:5 p.m.3 views

CVE-2026-25455

Missing Authorization vulnerability in PickPlugins Product Slider for WooCommerce woocommerce-products-slider allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Product Slider for WooCommerce: from n/a through = 1.13.61...

6.5CVSS5.8AI score0.00315EPSS
Exploits0References1
EUVD
EUVD
added 2026/03/25 6:31 p.m.3 views

EUVD-2026-15734

Missing Authorization vulnerability in PickPlugins Product Slider for WooCommerce woocommerce-products-slider allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Product Slider for WooCommerce: from n/a through = 1.13.60...

5.8AI score0.00315EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/03/25 12:0 a.m.7 views

PT-2026-27951

Name of the Vulnerable Software and Affected Versions PickPlugins Product Slider for WooCommerce versions through 1.13.60 Description The software contains a flaw related to incorrectly configured access control security levels, leading to a missing authorization issue. This allows for potential...

6.5CVSS5.9AI score0.00315EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2025/02/05 3:40 a.m.8 views

CVE-2024-45459

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in PickPlugins Product Slider for WooCommerce woocommerce-products-slider allows Reflected XSS.This issue affects Product Slider for WooCommerce: from n/a through = 1.13.50...

7.1CVSS5.9AI score0.00293EPSS
Exploits0References1
NVD
NVD
added 2024/09/15 8:15 a.m.19 views

CVE-2024-45459

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in PickPlugins Product Slider for WooCommerce woocommerce-products-slider allows Reflected XSS.This issue affects Product Slider for WooCommerce: from n/a through = 1.13.50...

7.1CVSS0.00293EPSS
Exploits0References1
CVE
CVE
added 2024/09/15 7:41 a.m.53 views

CVE-2024-45459

CVE-2024-45459 concerns the WordPress plugin Product Slider for WooCommerce by PickPlugins, affected versions 1.13.50 and earlier. The issue is a Reflected Cross-Site Scripting (XSS) vulnerability arising from improper input neutralization during web page generation, enabling attacker-supplied sc...

7.1CVSS5.9AI score0.00293EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2024/09/15 12:0 a.m.6 views

PT-2024-31649 · Pickplugins · Pickplugins Product Slider For Woocommerce

Name of the Vulnerable Software and Affected Versions: PickPlugins Product Slider for WooCommerce versions 1.13.50 and earlier Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting XSS. This allows for Reflected XSS,...

7.1CVSS6.6AI score0.00293EPSS
Exploits0References12
CNVD
CNVD
added 2021/07/09 12:0 a.m.8 views

WordPress PickPlugins Product Slider for WooCommerce Cross-Site Scripting Vulnerability

WordPress is a set of blogging platforms developed using the PHP language by the WordPress Wordpress Foundation. The platform supports setting up personal blog sites on servers with PHP and MySQL. A security vulnerability exists in the WooCommerce WordPress plugin for PickPlugins Product slider...

6.1CVSS6.1AI score0.10587EPSS
Exploits5References1
Prion
Prion
added 2021/05/24 11:15 a.m.17 views

Cross site scripting

The slider import search feature of the PickPlugins Product Slider for WooCommerce WordPress plugin before 1.13.22 did not properly sanitised the keyword GET parameter, leading to reflected Cross-Site Scripting issue...

4.3CVSS6AI score0.10587EPSS
Exploits5References1Affected Software1
CNNVD
CNNVD
added 2021/05/24 12:0 a.m.7 views

WordPress 跨站脚本漏洞

WordPress is a set of blogging platforms developed using the PHP language by the WordPress Wordpress Foundation. The platform supports setting up personal blog sites on servers with PHP and MySQL. A security vulnerability exists in the WooCommerce WordPress plugin for PickPlugins Product slider...

6.1CVSS5.8AI score0.10587EPSS
Exploits5References3
WPVulnDB
WPVulnDB
added 2021/05/06 12:0 a.m.21 views

PickPlugins Product Slider for WooCommerce < 1.13.22 - Reflected Cross-Site Scripting (XSS)

The slider import search feature of the plugin settings did not properly sanitised the keyword GET parameter, leading to reflected Cross-Site Scripting issue PoC https://example.com/wp-admin/edit.php?posttype=wcps=importlayouts="onmouseover=alert1;//...

6.1CVSS0.3AI score0.10587EPSS
Exploits5Affected Software1
Rows per page
Query Builder