Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee
Vulnerability List
Clear Filters
Found 25 results
CVE IDTitleVendorProductSeverityCVSS ScorePublished AtAI Analysis
CVE-2026-22333 WordPress YITH WooCommerce Compare plugin <= 3.6.0 - Deserialization of untrusted data vulnerability YITHEMESYITH WooCommerce Compare--2026-02-19 08:26:48 Deep Dive
CVE-2026-24366 WordPress YITH WooCommerce Request A Quote plugin <= 2.46.0 - Broken Access Control vulnerability YITHEMESYITH WooCommerce Request A Quote Medium 5.3 2026-01-22 16:52:45 Deep Dive
CVE-2025-68581 WordPress YITH Slider for page builders plugin <= 1.0.11 - Broken Access Control vulnerability YITHEMESYITH Slider for page builders Medium 5.4 2025-12-24 13:10:41 Deep Dive
CVE-2025-8617 YITH WooCommerce Quick View <= 2.7.0 - Authenticated (Contributor+) Stored Cross-Site Scripting via yith_quick_view Shortcode yithemesYITH WooCommerce Quick View Medium 6.4 2025-12-13 04:31:29 Deep Dive
CVE-2025-12427 YITH WooCommerce Wishlist <= 4.10.0 - Unauthenticated Insecure Direct Object Reference to Unauthenticated Wishlist Rename yithemesYITH WooCommerce Wishlist Medium 5.3 2025-11-19 03:29:40 Deep Dive
CVE-2025-12777 YITH WooCommerce Wishlist <= 4.10.0 - Unauthenticated Wishlist Token Disclosure to Wishlist Item Deletion yithemesYITH WooCommerce Wishlist Medium 5.3 2025-11-19 03:29:39 Deep Dive
CVE-2025-54675 WordPress YITH WooCommerce Popup Plugin plugin <= 1.48.0 - Cross Site Request Forgery (CSRF) Vulnerability YITHEMESYITH WooCommerce Popup Medium 4.3 2025-08-14 10:34:42 Deep Dive
CVE-2025-48111 WordPress YITH PayPal Express Checkout for WooCommerce plugin <= 1.49.0 - Cross Site Request Forgery (CSRF) vulnerability YITHEMESYITH PayPal Express Checkout for WooCommerce Medium 4.3 2025-06-17 15:01:44 Deep Dive
CVE-2025-5238 YITH WooCommerce Wishlist <= 4.5.0 - Authenticated (Contributor+) Stored Cross-Site Scripting via id Parameter yithemesYITH WooCommerce Wishlist Medium 6.4 2025-06-14 09:23:34 Deep Dive
CVE-2023-46635 WordPress YITH WooCommerce Product Add-Ons plugin <= 4.2.0 - Broken Access Control vulnerability YITHEMESYITH WooCommerce Product Add-Ons 中危 -2025-01-02 12:00:27 Deep Dive
CVE-2023-36506 WordPress YITH WooCommerce Waitlist plugin <= 2.13.0 - Broken Access Control vulnerability YITHEMESYITH WooCommerce Waiting List Medium 5.3 2024-12-13 14:23:42 Deep Dive
CVE-2024-50448 WordPress YITH WooCommerce Product Add-Ons plugin <= 4.14.1 - Reflected Cross Site Scripting (XSS) vulnerability YITHEMESYITH WooCommerce Product Add-Ons High 7.1 2024-10-28 17:56:19 Deep Dive
CVE-2024-47350 WordPress YITH WooCommerce Ajax Search plugin <= 2.8.0 - SQL Injection vulnerability YITHEMESYITH WooCommerce Ajax Search Critical 9.3 2024-10-06 12:55:17 Deep Dive
CVE-2024-47367 WordPress YITH WooCommerce Product Add-Ons plugin <= 4.13.0 - Reflected Cross Site Scripting (XSS) vulnerability YITHEMESYITH WooCommerce Product Add-Ons High 7.1 2024-10-06 09:43:53 Deep Dive
CVE-2024-8665 YITH Custom Login <= 1.7.3 - Reflected Cross-Site Scripting yithemesYITH Custom Login Medium 6.1 2024-09-13 06:47:26 Deep Dive
CVE-2024-37943 WordPress YITH WooCommerce Ajax Product Filter plugin <= 5.1.0 - Reflected Cross Site Scripting (XSS) vulnerability YITHEMESYITH WooCommerce Ajax Product Filter Medium 5.8 2024-07-20 08:54:23 Deep Dive
CVE-2024-6799 YITH Essential Kit for WooCommerce #1 <= 2.34.0 - Missing Authorization to Authenticated (Subscriber+) Limited Plugin Install, Activation, and Deactivation yithemesYITH Essential Kit for WooCommerce #1 Medium 4.3 2024-07-19 07:36:45 Deep Dive
CVE-2024-35680 WordPress YITH WooCommerce Product Add-Ons plugin <= 4.9.2 - Content Injection vulnerability YITHEMESYITH WooCommerce Product Add-Ons Medium 5.3 2024-06-10 15:48:09 Deep Dive
CVE-2024-35698 WordPress YITH WooCommerce Tab Manager plugin <= 1.35.0 - Cross Site Scripting (XSS) vulnerability YITHEMESYITH WooCommerce Tab Manager Medium 5.9 2024-06-08 14:19:22 Deep Dive
CVE-2024-35732 WordPress YITH Custom Login plugin <= 1.7.0 - Cross Site Scripting (XSS) vulnerability YITHEMESYITH Custom Login Medium 5.9 2024-06-08 12:52:23 Deep Dive