Woot@* Security Vulnerabilities and Issues — Woot@* CVE List

PluginusWoot*

3 matches found

CVE•added 2022/06/27 8:58 a.m.•108 views

CVE-2022-1916

CVE-2022-1916 concerns the WordPress plugin “Active Products Tables for WooCommerce” (prior to v1.0.5). The vulnerability is a reflected cross-site scripting (XSS) flaw caused by the plugin not sanitizing/escaping a parameter before echoing it in the response of an AJAX action. This action is acc...

6.1CVSS6.1AI score0.01636EPSS

In wild

CVE•added 2024/06/08 12:54 p.m.•51 views

CVE-2024-35730

CVE-2024-35730: Reflected XSS in Active Products Tables for WooCommerce (real mag777). Affected: Active Products Tables for WooCommerce

7.1CVSS6.7AI score0.00288EPSS

CVE•added 2024/11/06 11:32 a.m.•43 views

CVE-2024-10168

CVE-2024-10168 affects Active Products Tables for WooCommerce. Use constructor to create tables (WordPress plugin) and is vulnerable to Stored Cross-Site Scripting via the woot_button shortcode in all versions up to 1.0.6.4. Root cause: insufficient input sanitization and output escaping on user-...

6.4CVSS5.4AI score0.00295EPSS