Vulnerabilities (CVE)

Filtered by vendor Piwebsolution Subscribe

Filtered by product Product Enquiry For Woocommerce

Total 2 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2023-7151	1 Piwebsolution	1 Product Enquiry For Woocommerce	2024-01-23	N/A	6.1 MEDIUM
The Product Enquiry for WooCommerce WordPress plugin before 3.2 does not sanitise and escape the page parameter before outputting it back in an attribute, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin
CVE-2023-29170	1 Piwebsolution	1 Product Enquiry For Woocommerce	2023-11-07	N/A	4.8 MEDIUM
Auth. (admin+) Stored Cross-site Scripting (XSS) vulnerability in PI Websolution Product Enquiry for WooCommerce, WooCommerce product catalog plugin <= 2.2.12 versions.