Product Catalog Feed@* Security Vulnerabilities and Issues — Product Catalog Feed@* CVE List

Lucene search

PixelyoursiteProduct Catalog Feed*

3 matches found

CVE•added 2023/12/17 11:15 a.m.•51 views

CVE-2023-49824

Cross-Site Request Forgery (CSRF) vulnerability in PixelYourSite Product Catalog Feed by PixelYourSite.This issue affects Product Catalog Feed by PixelYourSite: from n/a through 2.1.1.

8.8CVSS7AI score0.00055EPSS

CVE•added 2023/05/02 8:15 a.m.•47 views

CVE-2023-1804

The Product Catalog Feed by PixelYourSite WordPress plugin before 2.1.1 does not sanitise and escape the edit parameter before outputting it back in an attribute, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as administrators.

6.1CVSS6.1AI score0.00138EPSS

CVE•added 2023/05/02 8:15 a.m.•45 views

CVE-2023-1805

The Product Catalog Feed by PixelYourSite WordPress plugin before 2.1.1 does not sanitise and escape the page parameter before outputting it back in an attribute, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin

6.1CVSS6.1AI score0.00108EPSS