Skip to main content

Waitlist Woocommerce

2 CVEs product

Monthly

CVE-2024-8724 MEDIUM PATCH This Month

The Waitlist Woocommerce ( Back in stock notifier ) plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg without appropriate escaping on the URL in all. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Cross-Site Scripting (XSS) vulnerability could allow attackers to inject malicious scripts into web pages viewed by other users.

WordPress XSS Waitlist Woocommerce
NVD
CVSS 3.1
6.1
EPSS
0.4%
CVE-2024-5324 HIGH PATCH Act Now

Multiple plugins for WordPress utilizing the XootiX Framework are vulnerable to unauthorized modification of data due to a missing capability check on the 'import_settings' function in various. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Epss exploitation probability 43.7%.

WordPress Authentication Bypass Login Signup Popup Otp Login Woocommerce Gravity Forms Side Cart Woocommerce +1
NVD
CVSS 3.1
8.8
EPSS
43.7%
EPSS 0% CVSS 6.1
MEDIUM PATCH This Month

The Waitlist Woocommerce ( Back in stock notifier ) plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg without appropriate escaping on the URL in all. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Cross-Site Scripting (XSS) vulnerability could allow attackers to inject malicious scripts into web pages viewed by other users.

WordPress XSS Waitlist Woocommerce
NVD
EPSS 44% CVSS 8.8
HIGH PATCH Act Now

Multiple plugins for WordPress utilizing the XootiX Framework are vulnerable to unauthorized modification of data due to a missing capability check on the 'import_settings' function in various. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Epss exploitation probability 43.7%.

WordPress Authentication Bypass Login Signup Popup +3
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy