Ti Woocommerce Wishlist Security Vulnerabilities and Issues — Ti Woocommerce Wishlist CVE List

Lucene search

TemplateinvadersTi Woocommerce Wishlist

3 matches found

CVE•added 2024/08/29 3:15 p.m.•72 views

CVE-2024-43917

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in TemplateInvaders TI WooCommerce Wishlist allows SQL Injection.This issue affects TI WooCommerce Wishlist: from n/a through 2.8.2.

9.8CVSS9.8AI score0.8202EPSS

CVE•added 2024/12/04 9:15 a.m.•53 views

CVE-2024-10567

The TI WooCommerce Wishlist plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'wizard' function in all versions up to, and including, 2.9.1. This makes it possible for unauthenticated attackers to create new pages, modify plugin setting...

7.5CVSS7.4AI score0.001EPSS

CVE•added 2024/10/10 6:15 a.m.•37 views

CVE-2024-9156

The TI WooCommerce Wishlist WordPress plugin through 2.8.2 is vulnerable to SQL Injection due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for unauthenticated attackers to append additional SQL queries i...

7.5CVSS7.9AI score0.00273EPSS