Vulnerabilities > Pluginus

DATE	CVE	VULNERABILITY TITLE	RISK
2025-02-18	CVE-2025-0864	Cross-site Scripting vulnerability in Pluginus Active products Tables for Woocommerce The Active Products Tables for WooCommerce. network low complexity pluginus CWE-79	6.1
2025-01-23	CVE-2024-13340	Cross-site Scripting vulnerability in Pluginus Meta Data and Taxonomies Filter The MDTF – Meta Data and Taxonomies Filter plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'mdf_results_by_ajax' shortcode in all versions up to, and including, 1.3.3.6 due to insufficient input sanitization and output escaping on user supplied attributes. network low complexity pluginus CWE-79	5.4
2024-11-19	CVE-2024-11400	Cross-site Scripting vulnerability in Pluginus Woocommerce products Filter The HUSKY – Products Filter Professional for WooCommerce plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the really_curr_tax parameter in all versions up to, and including, 1.3.6.3 due to insufficient input sanitization and output escaping. network low complexity pluginus CWE-79	6.1
2024-11-06	CVE-2024-10168	Cross-site Scripting vulnerability in Pluginus Woot The Active Products Tables for WooCommerce. network low complexity pluginus CWE-79	5.4
2024-10-28	CVE-2024-50451	Cross-site Scripting vulnerability in Pluginus Meta Data and Taxonomies Filter Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in realmag777 WordPress Meta Data and Taxonomies Filter (MDTF) allows Stored XSS.This issue affects WordPress Meta Data and Taxonomies Filter (MDTF): from n/a through 1.3.3.4. network low complexity pluginus CWE-79	5.4
2024-10-28	CVE-2024-50450	Code Injection vulnerability in Pluginus Wordpress Meta Data and Taxonomies Filter Improper Control of Generation of Code ('Code Injection') vulnerability in realmag777 WordPress Meta Data and Taxonomies Filter (MDTF) allows Code Injection.This issue affects WordPress Meta Data and Taxonomies Filter (MDTF): from n/a through 1.3.3.4. network low complexity pluginus CWE-94 critical	9.8
2024-09-24	CVE-2024-8623	Code Injection vulnerability in Pluginus Wordpress Meta Data and Taxonomies Filter The The MDTF – Meta Data and Taxonomies Filter plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 1.3.3.3. network low complexity pluginus CWE-94	7.3
2024-09-24	CVE-2024-8624	SQL Injection vulnerability in Pluginus Wordpress Meta Data and Taxonomies Filter The MDTF – Meta Data and Taxonomies Filter plugin for WordPress is vulnerable to SQL Injection via the 'meta_key' attribute of the 'mdf_select_title' shortcode in all versions up to, and including, 1.3.3.3 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. network low complexity pluginus CWE-89 critical	9.9
2024-09-14	CVE-2024-8271	Code Injection vulnerability in Pluginus FOX - Currency Switcher Professional for Woocommerce The The FOX – Currency Switcher Professional for WooCommerce plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 1.4.2.1. network low complexity pluginus CWE-94	7.3
2024-06-08	CVE-2024-35730	Unspecified vulnerability in Pluginus Woot Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in realmag777 Active Products Tables for WooCommerce allows Reflected XSS.This issue affects Active Products Tables for WooCommerce: from n/a through 1.0.6.3. network low complexity pluginus	6.1

Vulnerabilities > Pluginus {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Pluginus"}]}

Vulnerabilities > Pluginus