← Back

Pluginus

pluginus

85 CVEs • 17 products

Products (17)

Click to collapse
Toggle
Bear Woocommerce Bulk Editor And Products Manager Professional
bear_-_woocommerce_bulk_editor_and_products_manager_professional
18 CVEs
Husky Products Filter Professional For Woocommerce
husky_-_products_filter_professional_for_woocommerce
14 CVEs
Wordpress Meta Data And Taxonomies Filter
wordpress_meta_data_and_taxonomies_filter
12 CVEs
Wolf Wordpress Posts Bulk Editor And Products Manager Professional
wolf_-_wordpress_posts_bulk_editor_and_products_manager_professional
10 CVEs
Woot
woot
7 CVEs
Fox Currency Switcher Professional For Woocommerce
fox_-_currency_switcher_professional_for_woocommerce
6 CVEs
Inpost Gallery
inpost_gallery
3 CVEs
Wordpress Currency Switcher Professional
wordpress_currency_switcher_professional
3 CVEs
Wordpress Currency Switcher
wordpress_currency_switcher
3 CVEs
Woocommerce Products Filter
woocommerce_products_filter
2 CVEs
Meta Data And Taxonomies Filter
meta_data_and_taxonomies_filter
2 CVEs
Woocommerce Currency Switcher
woocommerce_currency_switcher
1 CVE
Woocs
woocs
1 CVE
Wolf Wordpress Posts Bulk Editor And Manager Professional
wolf_-_wordpress_posts_bulk_editor_and_manager_professional
1 CVE
Active Products Tables For Woocommerce
active_products_tables_for_woocommerce
1 CVE
Taxonomy Chain Menu
taxonomy_chain_menu
1 CVE
Tableon Wordpress Posts Table Filterable
tableon_-_wordpress_posts_table_filterable
1 CVE

CVEs (85)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2022-1916
1Pluginus
1Woot
Nov 21, 2024
Jun 27, 2022
N/A· v4
6.1 MEDIUM· v3
4.3 MEDIUM· v2
The Active Products Tables for WooCommerce. Professional products tables for WooCommerce store WordPress plugin before 1.0.5 does not sanitise and escape a parameter before outputting it back in the response of an AJAX a...Show more
The Active Products Tables for WooCommerce. Professional products tables for WooCommerce store WordPress plugin before 1.0.5 does not sanitise and escape a parameter before outputting it back in the response of an AJAX action (available to both unauthenticated and authenticated users), leading to a Reflected cross-Site ScriptingShow less
CVE-2022-0234
1Pluginus
1Woocs
Nov 21, 2024
Feb 21, 2022
N/A· v4
6.1 MEDIUM· v3
4.3 MEDIUM· v2
The WOOCS WordPress plugin before 1.3.7.5 does not sanitise and escape the woocs_in_order_currency parameter of the woocs_get_products_price_html AJAX action (available to both unauthenticated and authenticated users) be...Show more
The WOOCS WordPress plugin before 1.3.7.5 does not sanitise and escape the woocs_in_order_currency parameter of the woocs_get_products_price_html AJAX action (available to both unauthenticated and authenticated users) before outputting it back in the response, leading to a Reflected Cross-Site ScriptingShow less
CVE-2021-25085
1Pluginus
1Woocommerce Products Filter
Nov 21, 2024
Feb 1, 2022
N/A· v4
6.1 MEDIUM· v3
4.3 MEDIUM· v2
The WOOF WordPress plugin before 1.2.6.3 does not sanitise and escape the woof_redraw_elements before outputing back in an admin page, leading to a Reflected Cross-Site Scripting
CVE-2021-25043
1Pluginus
1Woocommerce Currency Switcher
Nov 21, 2024
Jan 10, 2022
N/A· v4
6.1 MEDIUM· v3
4.3 MEDIUM· v2
The WOOCS WordPress plugin before 1.3.7.3 does not sanitise and escape the custom_prices parameter before outputting it back in the response, leading to a Reflected Cross-Site Scripting issue
CVE-2021-20781
1Pluginus
1Wordpress Meta Data And Taxonomies Filter
Nov 21, 2024
Jul 14, 2021
N/A· v4
8.8 HIGH· v3
6.8 MEDIUM· v2
Cross-site request forgery (CSRF) vulnerability in WordPress Meta Data Filter & Taxonomies Filter versions prior to v.1.2.8 and versions prior to v.2.2.8 allows remote attackers to hijack the authentication of administra...Show more
Cross-site request forgery (CSRF) vulnerability in WordPress Meta Data Filter & Taxonomies Filter versions prior to v.1.2.8 and versions prior to v.2.2.8 allows remote attackers to hijack the authentication of administrators via unspecified vectors.Show less