Skip to main content

Feed Kuantokusta For Woocommerce Free

1 CVEs product

Monthly

Sort: Newest CVSS Score EPSS Score Oldest
CVE-2026-39441 CRITICAL Act Now

Unauthenticated SQL injection in the Feed KuantoKusta for WooCommerce Free WordPress plugin (versions n/a through 5.3) allows remote attackers to inject crafted SQL statements without prior authentication. Disclosed via Patchstack and tracked as EUVD-2026-36926, the flaw carries a CVSS 3.1 score of 9.3 with a changed scope, indicating data exposure beyond the plugin's own context. No public exploit identified at time of analysis, and no EPSS or KEV signal was provided in the input.

WordPress SQLi Feed Kuantokusta For Woocommerce Free
NVD
CVSS 3.1
9.3
EPSS
0.3%
CVE-2026-39441
EPSS 0% CVSS 9.3
CRITICAL Act Now

Unauthenticated SQL injection in the Feed KuantoKusta for WooCommerce Free WordPress plugin (versions n/a through 5.3) allows remote attackers to inject crafted SQL statements without prior authentication. Disclosed via Patchstack and tracked as EUVD-2026-36926, the flaw carries a CVSS 3.1 score of 9.3 with a changed scope, indicating data exposure beyond the plugin's own context. No public exploit identified at time of analysis, and no EPSS or KEV signal was provided in the input.

WordPress SQLi Feed Kuantokusta For Woocommerce Free
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy