Medium

DATE	CVE	VULNERABILITY TITLE	RISK
2024-01-16	CVE-2023-7151	Cross-site Scripting vulnerability in Piwebsolution Product Enquiry for Woocommerce The Product Enquiry for WooCommerce WordPress plugin before 3.2 does not sanitise and escape the page parameter before outputting it back in an attribute, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin network low complexity piwebsolution CWE-79	6.1
2023-04-07	CVE-2023-29170	Unspecified vulnerability in Piwebsolution Product Enquiry for Woocommerce 2.2.7 Auth. network low complexity piwebsolution	4.8