CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

10 matches found

RedhatCVE•added 2025/11/22 12:33 p.m.•4 views

CVE-2025-66069

Missing Authorization vulnerability in Themeisle PPOM for WooCommerce woocommerce-product-addon allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects PPOM for WooCommerce: from n/a through = 33.0.16...

4.3CVSS6.9AI score0.00036EPSS

Exploits0References1

NVD•added 2025/11/21 1:15 p.m.•1 views

CVE-2025-66069

4.3CVSS0.00036EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2024-35486

Malicious code in bioql PyPI...

5.3CVSS6.5AI score0.00168EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 12:0 p.m.•4 views

CVE-2025-24668

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Themeisle PPOM for WooCommerce woocommerce-product-addon allows Stored XSS.This issue affects PPOM for WooCommerce: from n/a through = 33.0.8...

5.9CVSS7.2AI score0.00219EPSS

Exploits0References1

NVD•added 2025/01/24 6:15 p.m.•6 views

CVE-2025-24668

5.9CVSS0.00219EPSS

Exploits0References1

CVE•added 2025/01/24 5:24 p.m.•41 views

CVE-2025-24668

CVE-2025-24668 is a stored cross-site scripting (XSS) vulnerability in the WordPress plugin PPOM – Product Addons & Custom Fields for WooCommerce (Themeisle PPOM for WooCommerce). Affected: PPOM versions up to and including 33.0.8 . Root cause: improperly neutralized input during web page generat...

5.9CVSS7.2AI score0.00219EPSS

Exploits0References1

Vulnrichment•added 2025/01/24 5:24 p.m.•9 views

CVE-2025-24668 WordPress PPOM for WooCommerce plugin <= 33.0.8 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Themeisle PPOM for WooCommerce allows Stored XSS. This issue affects PPOM for WooCommerce: from n/a through 33.0.8...

5.9CVSS5.7AI score0.00219EPSS

Exploits0References1

NVD•added 2024/06/10 5:16 p.m.•21 views

CVE-2024-35728

Improper Neutralization of Special Elements in Output Used by a Downstream Component 'Injection' vulnerability in Themeisle PPOM for WooCommerce allows Code Inclusion.This issue affects PPOM for WooCommerce: from n/a through 32.0.20...

5.3CVSS0.00168EPSS

Exploits0References1

Cvelist•added 2024/06/10 4:21 p.m.•20 views

CVE-2024-35728 WordPress Product Addons & Fields for WooCommerce plugin <= 32.0.20 - Content Injection vulnerability

5.3CVSS0.00168EPSS

Exploits0References1

CVE•added 2024/06/10 4:21 p.m.•43 views

CVE-2024-35728

CVE-2024-35728 affects Themeisle PPOM for WooCommerce (through version 32.0.20). It is described as an Improper Neutralization of Special Elements in Output Used by a Downstream Component (Injection) vulnerability enabling Code Inclusion. Connected sources confirm the affected product and version...

5.3CVSS5.8AI score0.00168EPSS

Exploits0References1Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by