Product Carousel Slider & Grid Ultimate For Woocommerce Security Vulnerabilities and Issues — Product Carousel Slider & Grid Ultimate For Woocommerce CVE List

Lucene search

WpwaxProduct Carousel Slider & Grid Ultimate For Woocommerce

4 matches found

cve•added 2024/03/13 4:15 p.m.•50 views

CVE-2024-1950

The Product Carousel Slider & Grid Ultimate for WooCommerce plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 1.9.7 via deserialization of untrusted input via shortcode. This makes it possible for authenticated attackers, with contributor access and ab...

8.8CVSS8.1AI score0.00959EPSS

cve•added 2024/12/12 6:15 a.m.•44 views

CVE-2024-12040

The Product Carousel Slider & Grid Ultimate for WooCommerce plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 1.9.10 via the 'theme' attribute of the wcpcsu shortcode. This makes it possible for authenticated attackers, with Contributor-level access an...

8.8CVSS7.7AI score0.00186EPSS

cve•added 2024/09/23 1:15 a.m.•40 views

CVE-2024-44048

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in wpWax Product Carousel Slider & Grid Ultimate for WooCommerce allows PHP Local File Inclusion.This issue affects Product Carousel Slider & Grid Ultimate for WooCommerce: from n/a through 1.9.10.

6.5CVSS6.8AI score0.00396EPSS

cve•added 2025/01/24 6:15 p.m.•35 views

CVE-2025-24681

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in wpWax Product Carousel Slider & Grid Ultimate for WooCommerce allows Stored XSS. This issue affects Product Carousel Slider & Grid Ultimate for WooCommerce: from n/a through 1.10.0.

5.9CVSS5.7AI score0.00041EPSS