Vulnerabilities > Advanced WOO Search

DATE	CVE	VULNERABILITY TITLE	RISK
2024-01-13	CVE-2024-0251	Cross-site Scripting vulnerability in Advanced-Woo-Search Advanced WOO Search The Advanced Woo Search plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the search parameter in all versions up to, and including, 2.96 due to insufficient input sanitization and output escaping. network low complexity advanced-woo-search CWE-79	6.1
2023-06-09	CVE-2023-2452	Cross-site Scripting vulnerability in Advanced-Woo-Search Advanced WOO Search The Advanced Woo Search plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in versions up to, and including, 2.77 due to insufficient input sanitization and output escaping. network high complexity advanced-woo-search CWE-79	4.4
2020-04-24	CVE-2020-12070	Information Exposure vulnerability in Advanced-Woo-Search Advanced WOO Search The Advanced Woo Search plugin version through 1.99 for Wordpress suffers from a sensitive information disclosure vulnerability in every ajax search request via the sql field to includes/class-aws-search.php. network low complexity advanced-woo-search CWE-200	7.5

Vulnerabilities > Advanced WOO Search {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Advanced WOO Search"}]}