Wishlist For Woocommerce Security Vulnerabilities and Issues — Wishlist For Woocommerce CVE List

Lucene search

WpfactoryWishlist For Woocommerce

4 matches found

CVE•added 2024/11/23 10:15 a.m.•45 views

CVE-2024-10519

The Wishlist for WooCommerce: Multi Wishlists Per Customer PRO plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'wtab' parameter in versions 3.0.8 to 3.1.2 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to...

6.1CVSS6.1AI score0.00291EPSS

CVE•added 2025/03/08 3:15 a.m.•36 views

CVE-2024-13774

The Wishlist for WooCommerce: Multi Wishlists Per Customer plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 3.1.7. This is due to missing or incorrect nonce validation on the 'save_to_multiple_wishlist' function. This makes it possible for unaut...

6.5CVSS5.9AI score0.00023EPSS

CVE•added 2025/05/19 3:15 p.m.•11 views

CVE-2025-48237

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in WPFactory Wishlist for WooCommerce allows Stored XSS. This issue affects Wishlist for WooCommerce: from n/a through 3.2.2.

6.5CVSS6.5AI score0.00039EPSS

CVE•added 2025/07/16 12:15 p.m.•5 views

CVE-2025-49319

Missing Authorization vulnerability in WPFactory Wishlist for WooCommerce allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Wishlist for WooCommerce: from n/a through 3.2.3.

6.5CVSS6.6AI score0.0005EPSS