Vulnerabilities > Themeisle > Product Addons Fields FOR Woocommerce > 32.0.6

DATE	CVE	VULNERABILITY TITLE	RISK
2024-06-10	CVE-2024-35728	Unspecified vulnerability in Themeisle Product Addons & Fields for Woocommerce Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') vulnerability in Themeisle PPOM for WooCommerce allows Code Inclusion.This issue affects PPOM for WooCommerce: from n/a through 32.0.20. network low complexity themeisle	5.3
2023-05-30	CVE-2023-2256	Unspecified vulnerability in Themeisle Product Addons & Fields for Woocommerce The Product Addons & Fields for WooCommerce WordPress plugin before 32.0.7 does not sanitize and escape some URL parameters, leading to Reflected Cross-Site Scripting. network low complexity themeisle	6.1

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.