PT-2024-28576 · WordPress · Product Enquiry For Woocommerce

Name of the Vulnerable Software and Affected Versions: Product Enquiry for WooCommerce WordPress plugin versions prior to 3.1.8 Description: The issue allows high privilege users, such as admins, to perform Stored Cross-Site Scripting attacks, even when the unfiltered html capability is disallowe...

CVE-2007-5818

Cross-site request forgery CSRF vulnerability in blockseditdo.php in sBlog 0.7.3 Beta allows remote attackers to change arbitrary blocks as administrators...