| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2025-24596 | WordPress WooCommerce Product Table Lite plugin <= 3.8.7 - Broken Access Control vulnerability | WC Product Table | WooCommerce Product Table Lite | Medium | 5.3 | 2025-01-24 17:24:31 | Deep Dive |
| CVE-2025-23991 | WordPress Product Size Charts Plugin for WooCommerce plugin <= 2.4.5 - Broken Access Control vulnerability | Dotstore | Product Size Charts Plugin for WooCommerce | Medium | 4.3 | 2025-01-24 15:31:41 | Deep Dive |
| CVE-2024-13234 | Product Table by WBW <= 2.1.2 - Unuthenticated SQL Injection | woobewoo | Product Table for WooCommerce by WBW | High | 7.5 | 2025-01-23 11:13:28 | Deep Dive |
| CVE-2024-51919 | WordPress Fancy Product Designer plugin <= 6.4.3 - Unauthenticated Arbitrary File Upload vulnerability | radykal | Fancy Product Designer | Critical | 9.0 | 2025-01-21 13:40:34 | Deep Dive |
| CVE-2024-51818 | WordPress Fancy Product Designer plugin <= 6.4.3 - Unauthenticated SQL Injection vulnerability | radykal | Fancy Product Designer | Critical | 9.3 | 2025-01-21 13:40:34 | Deep Dive |
| CVE-2025-22724 | WordPress Product Carousel For WooCommerce – WoorouSell plugin <= 1.1.0 - Cross Site Scripting (XSS) vulnerability | MojofyWP | Product Carousel For WooCommerce – WoorouSell | Medium | 6.5 | 2025-01-15 15:23:37 | Deep Dive |
| CVE-2025-22799 | WordPress Neon Product Designer Plugin <= 2.2.0 - SQL Injection vulnerability | vertim | Neon Product Designer | High | 8.5 | 2025-01-15 15:23:04 | Deep Dive |
| CVE-2025-22307 | WordPress Product Table for WooCommerce plugin <= 4.0.3 - Reflected Cross Site Scripting (XSS) vulnerability | Saiful Islam | Product Table for WooCommerce | High | 7.1 | 2025-01-09 15:39:33 | Deep Dive |
| CVE-2025-22803 | WordPress Advanced Product Information for WooCommerce plugin <= 1.1.4 - Cross Site Scripting (XSS) vulnerability | VillaTheme | Advanced Product Information for WooCommerce | Medium | 6.5 | 2025-01-09 15:39:20 | Deep Dive |
| CVE-2025-22335 | WordPress Opencart Product in WP plugin <= 1.0.1 - Reflected Cross Site Scripting (XSS) vulnerability | rajib.dewan | Opencart Product in WP | High | 7.1 | 2025-01-07 14:57:40 | Deep Dive |
| CVE-2024-11465 | Custom Product Tabs for WooCommerce <= 1.8.5 - Authenticated (Shop Manager+) PHP Object Injection | eherman24 | Custom Product Tabs for WooCommerce | High | 7.2 | 2025-01-07 04:21:57 | Deep Dive |
| CVE-2023-46635 | WordPress YITH WooCommerce Product Add-Ons plugin <= 4.2.0 - Broken Access Control vulnerability | YITHEMES | YITH WooCommerce Product Add-Ons | 中危 | - | 2025-01-02 12:00:27 | Deep Dive |
| CVE-2023-46631 | WordPress Product Recommendation Quiz for eCommerce plugin <= 2.1.2 - Broken Access Control vulnerability | RevenueHunt | Product Recommendation Quiz for eCommerce | 中危 | - | 2025-01-02 12:00:25 | Deep Dive |
| CVE-2024-56031 | WordPress Smart Shopify Product plugin <= 1.0.2 - Arbitrary Content Deletion vulnerability | Yulio Aleman Jimenez | Smart Shopify Product | Medium | 6.5 | 2024-12-31 12:49:26 | Deep Dive |
| CVE-2024-56230 | WordPress Dynamic Product Category Grid, Slider for WooCommerce plugin <= 1.1.3 - Local File Inclusion vulnerability | Maidul | Dynamic Product Category Grid, Slider for WooCommerce | High | 7.5 | 2024-12-31 09:58:32 | Deep Dive |
| CVE-2024-12721 | Custom Product Tabs For WooCommerce <= 1.2.4 - Authenticated (Shop Manager+) PHP Object Injection | webbuilder143 | Custom Product tabs for WooCommerce | High | 7.2 | 2024-12-21 07:03:00 | Deep Dive |
| CVE-2024-12771 | eCommerce Product Catalog Plugin for WordPress <= 3.3.43 - Cross-Site Request Forgery to Password Reset | implecode | eCommerce Product Catalog Plugin for WordPress | High | 8.8 | 2024-12-21 07:02:59 | Deep Dive |
| CVE-2024-55996 | WordPress Payment gateway per Product for WooCommerce plugin <= 3.5.6 - Broken Access Control vulnerability | dreamfox | Dreamfox Media Payment gateway per Product for Woocommerce | Medium | 6.1 | 2024-12-16 14:31:16 | Deep Dive |
| CVE-2024-54412 | WordPress ECT Product Carousel plugin <= 1.9 - CSRF to Stored Cross-Site Scripting vulnerability | etemplates | ECT Product Carousel | High | 7.1 | 2024-12-16 14:13:55 | Deep Dive |
| CVE-2024-54439 | WordPress Amazon Product Price plugin <= 1.1 - CSRF to Stored XSS vulnerability | Alok Tiwari | Amazon Product Price | High | 7.1 | 2024-12-16 14:13:41 | Deep Dive |