| CVE-2024-5640 | Prime Slider – Addons For Elementor (Revolution of a slider, Hero Slider, Ecommerce Slider) <= 3.14.7 - Authenticated (Contributor+) Stored Cross-Site Scripting via Pacific Widget | bdthemes | Prime Slider – Addons for Elementor | Medium | 6.4 | 2024-06-07 04:33:25 | Deep Dive |
| CVE-2024-36082 | WordPress plugin Music Store 安全漏洞 | CodePeople | Music Store - WordPress eCommerce | 中危 | - | 2024-06-07 03:42:21 | Deep Dive |
| CVE-2024-3997 | Prime Slider – Addons For Elementor (Revolution of a slider, Hero Slider, Ecommerce Slider) <= 3.14.1 - Authenticated (Contributor+) Stored Cross-Site Scripting via Pagepiling Widget | bdthemes | Prime Slider – Addons for Elementor | Medium | 6.4 | 2024-05-23 11:02:38 | Deep Dive |
| CVE-2024-2861 | ProfilePress <= 4.15.8 - Authenticated (Contributor+) Stored Cross-Site Scripting via ProfilePress User Panel Widget | properfraction | Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content – ProfilePress | Medium | 6.4 | 2024-05-23 09:32:33 | Deep Dive |
| CVE-2024-4213 | Shopping Cart & eCommerce Store <= 5.6.4 - Sensitive Information Exposure | levelfourstorefront | Shopping Cart & eCommerce Store | Medium | 5.3 | 2024-05-10 21:32:42 | Deep Dive |
| CVE-2024-4339 | Prime Slider – Addons For Elementor (Revolution of a slider, Hero Slider, Ecommerce Slider) <= 3.14.3 - Authenticated (Contributor+) Stored Cross-Site Scripting | bdthemes | Prime Slider – Addons for Elementor | Medium | 6.4 | 2024-05-09 20:03:31 | Deep Dive |
| CVE-2024-2867 | Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content – ProfilePress <= 4.15.4 - Authenticated (Contributor+) Stored Cross-Site Scripting | properfraction | Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content – ProfilePress | Medium | 6.4 | 2024-05-02 16:52:05 | Deep Dive |
| CVE-2024-4075 | Kashipara Online Furniture Shopping Ecommerce Website login.php cross site scripting | Kashipara | Online Furniture Shopping Ecommerce Website | Low | 3.5 | 2024-04-23 23:00:07 | Deep Dive |
| CVE-2024-4074 | Kashipara Online Furniture Shopping Ecommerce Website prodInfo.php cross site scripting | Kashipara | Online Furniture Shopping Ecommerce Website | Low | 3.5 | 2024-04-23 23:00:05 | Deep Dive |
| CVE-2024-4073 | Kashipara Online Furniture Shopping Ecommerce Website prodList.php cross site scripting | Kashipara | Online Furniture Shopping Ecommerce Website | Low | 3.5 | 2024-04-23 22:31:06 | Deep Dive |
| CVE-2024-4072 | Kashipara Online Furniture Shopping Ecommerce Website search.php cross site scripting | Kashipara | Online Furniture Shopping Ecommerce Website | Low | 3.5 | 2024-04-23 22:31:05 | Deep Dive |
| CVE-2024-4071 | Kashipara Online Furniture Shopping Ecommerce Website prodInfo.php sql injection | Kashipara | Online Furniture Shopping Ecommerce Website | Medium | 6.3 | 2024-04-23 22:00:07 | Deep Dive |
| CVE-2024-4070 | Kashipara Online Furniture Shopping Ecommerce Website prodList.php sql injection | Kashipara | Online Furniture Shopping Ecommerce Website | Medium | 6.3 | 2024-04-23 22:00:06 | Deep Dive |
| CVE-2024-4069 | Kashipara Online Furniture Shopping Ecommerce Website search.php sql injection | Kashipara | Online Furniture Shopping Ecommerce Website | Medium | 6.3 | 2024-04-23 21:31:05 | Deep Dive |
| CVE-2024-1730 | Prime Slider – Addons For Elementor (Revolution of a slider, Hero Slider, Media Slider, Drag Drop Slider, Video Slider, Product Slider, Ecommerce Slider) <= 3.14.0 - Authenticated (Contributor+) Stored Cross-Site Scripting | bdthemes | Prime Slider – Addons for Elementor | Medium | 5.4 | 2024-04-20 03:21:18 | Deep Dive |
| CVE-2024-32558 | WordPress eCommerce Product Catalog plugin <= 3.3.32 - Cross Site Scripting (XSS) vulnerability | impleCode | eCommerce Product Catalog | High | 7.1 | 2024-04-18 10:08:48 | Deep Dive |
| CVE-2024-32437 | WordPress eCommerce Product Catalog plugin <= 3.3.28 - Cross Site Request Forgery (CSRF) vulnerability | impleCode | eCommerce Product Catalog | Medium | 4.3 | 2024-04-15 08:07:26 | Deep Dive |
| CVE-2024-3211 | Shopping Cart & eCommerce Store <= 5.6.3 - Authenticated (Contributor+) SQL Injection | levelfourstorefront | Shopping Cart & eCommerce Store | High | 8.8 | 2024-04-12 09:30:15 | Deep Dive |
| CVE-2024-3210 | Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content – ProfilePress <= 4.15.5 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'reg-single-checkbox' | properfraction | Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content – ProfilePress | Medium | 6.4 | 2024-04-10 05:32:23 | Deep Dive |
| CVE-2024-2456 | Ecwid Ecommerce Shopping Cart <= 6.12.10 - Authenticated(Contributor+) Stored Cross-Site Scripting via Shortcode | ecwid | Ecwid by Lightspeed Ecommerce Shopping Cart | Medium | 6.4 | 2024-04-09 18:59:28 | Deep Dive |