Sip Reviews Shortcode For Woocommerce Security Vulnerabilities and Issues — Sip Reviews Shortcode For Woocommerce CVE List

Lucene search

ShopitpressSip Reviews Shortcode For Woocommerce

2 matches found

CVE•added 2024/10/31 10:15 p.m.•36 views

CVE-2024-6480

The SIP Reviews Shortcode for WooCommerce plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'no_of_reviews' attribute in the woocommerce_reviews shortcode in all versions up to, and including, 1.2.3 due to insufficient input sanitization and output escaping on user supplied ...

6.4CVSS5.7AI score0.00049EPSS

CVE•added 2024/10/31 10:15 p.m.•35 views

CVE-2024-6479

The SIP Reviews Shortcode for WooCommerce plugin for WordPress is vulnerable to SQL Injection via the 'no_of_reviews' attribute in the woocommerce_reviews shortcode in all versions up to, and including, 1.2.3 due to insufficient escaping on the user supplied parameter and lack of sufficient prepara...

6.5CVSS6.6AI score0.00195EPSS