Skip to main content

Gift Up Gift Cards For Wordpress And Woocommerce

2 CVEs product

Monthly

CVE-2023-49744 MEDIUM This Month

Cross-Site Request Forgery (CSRF) vulnerability in Gift Up Gift Up Gift Cards for WordPress and WooCommerce.21.3. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

WordPress CSRF Gift Up Gift Cards For Wordpress And Woocommerce
NVD
CVSS 3.1
5.4
EPSS
0.1%
CVE-2023-5703 MEDIUM POC PATCH This Month

The Gift Up Gift Cards for WordPress and WooCommerce plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'giftup' shortcode in all versions up to, and including, 2.20.1. Rated medium severity (CVSS 6.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.

XSS WordPress Gift Up Gift Cards For Wordpress And Woocommerce
NVD VulDB
CVSS 3.1
6.4
EPSS
0.1%
EPSS 0% CVSS 5.4
MEDIUM This Month

Cross-Site Request Forgery (CSRF) vulnerability in Gift Up Gift Up Gift Cards for WordPress and WooCommerce.21.3. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

WordPress CSRF Gift Up Gift Cards For Wordpress And Woocommerce
NVD
EPSS 0% CVSS 6.4
MEDIUM POC PATCH This Month

The Gift Up Gift Cards for WordPress and WooCommerce plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'giftup' shortcode in all versions up to, and including, 2.20.1. Rated medium severity (CVSS 6.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.

XSS WordPress Gift Up Gift Cards For Wordpress And Woocommerce
NVD VulDB

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy