Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/12/07 6:5 a.m.15 views

CVE-2025-13137

The Live Sales Notification for Woocommerce – Woomotiv plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'woomotivlimit' parameter in all versions up to, and including, 3.6.3 due to insufficient input sanitization and output escaping. This makes it possible for...

6.1CVSS5.6AI score0.00168EPSS
Exploits0References1
EUVD
EUVD
added 2025/12/06 6:30 a.m.5 views

EUVD-2025-201536

The Live Sales Notification for Woocommerce – Woomotiv plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'woomotivlimit' parameter in all versions up to, and including, 3.6.3 due to insufficient input sanitization and output escaping. This makes it possible for...

6.1CVSS5.2AI score0.00168EPSS
Exploits0References3
CVE
CVE
added 2025/12/06 5:49 a.m.16 views

CVE-2025-13137

CVE-2025-13137 – Live Sales Notification for Woocommerce – Woomotiv : Reflected XSS via the woocomotiv_limit parameter affecting the WordPress plugin up to version 3.6.3. The vulnerability arises from insufficient input sanitization and output escaping, permitting unauthenticated attackers to inj...

6.1CVSS5.3AI score0.00168EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/12/06 5:49 a.m.4 views

CVE-2025-13137 Live Sales Notification for Woocommerce – Woomotiv <= 3.6.3 - Reflected Cross-Site Scripting

The Live Sales Notification for Woocommerce – Woomotiv plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'woomotivlimit' parameter in all versions up to, and including, 3.6.3 due to insufficient input sanitization and output escaping. This makes it possible for...

6.1CVSS5.3AI score0.00168EPSS
Exploits0References2
Rows per page
Query Builder