Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Product_slider_for_woocommerce
(Pickplugins)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 3 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2021-05-24 | CVE-2021-24300 | The slider import search feature of the PickPlugins Product Slider for WooCommerce WordPress plugin before 1.13.22 did not properly sanitised the keyword GET parameter, leading to reflected Cross-Site Scripting issue | Product_slider_for_woocommerce | 6.1 | ||
| 2023-02-13 | CVE-2023-0166 | The Product Slider for WooCommerce by PickPlugins WordPress plugin before 1.13.42 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks. | Product_slider_for_woocommerce | 5.4 | ||
| 2024-09-15 | CVE-2024-45459 | Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in PickPlugins Product Slider for WooCommerce allows Reflected XSS.This issue affects Product Slider for WooCommerce: from n/a through 1.13.50. | Product_slider_for_woocommerce | 6.1 |