Medium

DATE	CVE	VULNERABILITY TITLE	RISK
2024-01-16	CVE-2023-7151	Cross-site Scripting vulnerability in Piwebsolution Product Enquiry for Woocommerce The Product Enquiry for WooCommerce WordPress plugin before 3.2 does not sanitise and escape the page parameter before outputting it back in an attribute, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin network low complexity piwebsolution CWE-79	6.1
2023-06-26	CVE-2023-29423	Unspecified vulnerability in Piwebsolution Cancel Order Request / Return Order / Repeat Order / Reorder for Woocommerce Auth. network low complexity piwebsolution	4.8
2023-06-26	CVE-2023-28988	Unspecified vulnerability in Piwebsolution Add-To-Cart-Direct-Checkout-For-Woocommerce 2.1.44/2.1.48 Auth. network low complexity piwebsolution	4.8
2023-06-26	CVE-2023-28991	Unspecified vulnerability in Piwebsolution Pi-Woocommerce-Order-Date-Time-And-Type 3.0.19 Auth. network low complexity piwebsolution	4.8
2023-06-26	CVE-2023-29093	Unspecified vulnerability in Piwebsolution Conditional Cart FEE / Extra Charge Rule for Woocommerce Extra Fees 1.0.93/1.0.96 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in PI Websolution Conditional cart fee plugin <= 1.0.96 versions. network low complexity piwebsolution	4.8
2023-04-07	CVE-2023-29170	Unspecified vulnerability in Piwebsolution Product Enquiry for Woocommerce 2.2.7 Auth. network low complexity piwebsolution	4.8
2023-04-07	CVE-2023-29094	Unspecified vulnerability in Piwebsolution Product Page Shipping Calculator for Woocommerce Auth. network low complexity piwebsolution	4.8