Medium

DATE	CVE	VULNERABILITY TITLE	RISK
2024-06-08	CVE-2024-35730	Cross-site Scripting vulnerability in Pluginus Woot Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in realmag777 Active Products Tables for WooCommerce allows Reflected XSS.This issue affects Active Products Tables for WooCommerce: from n/a through 1.0.6.3. network low complexity pluginus CWE-79	6.1
2024-02-10	CVE-2023-51480	Cross-site Scripting vulnerability in Pluginus Woot Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in realmag777 Active Products Tables for WooCommerce. network low complexity pluginus CWE-79	5.4
2024-02-08	CVE-2024-24834	Cross-site Scripting vulnerability in Pluginus Bear - Woocommerce Bulk Editor and products Manager Professional Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in realmag777 BEAR – Bulk Editor and Products Manager Professional for WooCommerce by Pluginus.Net allows Stored XSS.This issue affects BEAR – Bulk Editor and Products Manager Professional for WooCommerce by Pluginus.Net: from n/a through 1.1.4. network low complexity pluginus CWE-79	4.8
2024-02-05	CVE-2024-0790	Cross-Site Request Forgery (CSRF) vulnerability in Pluginus Wolf - Wordpress Posts Bulk Editor and products Manager Professional The WOLF – WordPress Posts Bulk Editor and Manager Professional plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.0.8.1. network low complexity pluginus CWE-352	4.3
2024-02-05	CVE-2024-0791	Missing Authorization vulnerability in Pluginus Wolf - Wordpress Posts Bulk Editor and products Manager Professional The WOLF – WordPress Posts Bulk Editor and Manager Professional plugin for WordPress is vulnerable to unauthorized access, modification or loss of data due to a missing capability check on the wpbe_create_new_term, wpbe_update_tax_term, and wpbe_delete_tax_term functions in all versions up to, and including, 1.0.8.1. network low complexity pluginus CWE-862	4.3
2024-02-05	CVE-2024-0796	Cross-Site Request Forgery (CSRF) vulnerability in Pluginus Woot The Active Products Tables for WooCommerce. network low complexity pluginus CWE-352	4.3
2024-02-05	CVE-2024-0797	Missing Authorization vulnerability in Pluginus Woot The Active Products Tables for WooCommerce. network low complexity pluginus CWE-862	4.3
2024-02-01	CVE-2023-51506	Cross-site Scripting vulnerability in Pluginus Wordpress Currency Switcher Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in realmag777 WPCS – WordPress Currency Switcher Professional allows Stored XSS.This issue affects WPCS – WordPress Currency Switcher Professional: from n/a through 1.2.0. network low complexity pluginus CWE-79	5.4
2024-01-31	CVE-2024-22159	Cross-site Scripting vulnerability in Pluginus Wolf - Wordpress Posts Bulk Editor and products Manager Professional Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in realmag777 WOLF – WordPress Posts Bulk Editor and Manager Professional allows Reflected XSS.This issue affects WOLF – WordPress Posts Bulk Editor and Manager Professional: from n/a through 1.0.8. network low complexity pluginus CWE-79	6.1
2024-01-11	CVE-2023-6556	Cross-site Scripting vulnerability in Pluginus FOX - Currency Switcher Professional for Woocommerce The FOX – Currency Switcher Professional for WooCommerce plugin for WordPress is vulnerable to Stored Cross-Site Scripting via currency options in all versions up to, and including, 1.4.1.5 due to insufficient input sanitization and output escaping. network low complexity pluginus CWE-79	5.4