CVEs (2)
CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS |
|---|
1Najeebmedia 1Ppom For Woocommerce Nov 21, 2024 Feb 14, 2022 N/A· v4 5.4 MEDIUM· v3 3.5 LOW· v2 The PPOM for WooCommerce WordPress plugin before 24.0 does not have authorisation and CSRF checks in the ppom_settings_panel_action AJAX action, allowing any authenticated to call it and set arbitrary settings. Furthermo...Show more |
1Najeebmedia 1Ppom For Woocommerce Nov 21, 2024 Aug 12, 2019 N/A· v4 5.4 MEDIUM· v3 3.5 LOW· v2 The woocommerce-product-addon plugin before 18.4 for WordPress has XSS via an import of a new meta data structure. |