Vulnerabilities > Wpclever

DATE	CVE	VULNERABILITY TITLE	RISK
2024-11-01	CVE-2024-43312	Missing Authorization vulnerability in Wpclever WPC Frequently Bought Together for Woocommerce Missing Authorization vulnerability in WPClever WPC Frequently Bought Together for WooCommerce allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WPC Frequently Bought Together for WooCommerce: from n/a through 7.1.9. network low complexity wpclever CWE-862	8.8
2024-10-28	CVE-2024-50416	Deserialization of Untrusted Data vulnerability in Wpclever WPC Shop AS a Customer for Woocommerce Deserialization of Untrusted Data vulnerability in WPClever WPC Shop as a Customer for WooCommerce allows Object Injection.This issue affects WPC Shop as a Customer for WooCommerce: from n/a through 1.2.6. network low complexity wpclever CWE-502	8.8
2024-06-09	CVE-2024-30537	Unspecified vulnerability in Wpclever WPC Badge Management for Woocommerce Missing Authorization vulnerability in WPClever WPC Badge Management for WooCommerce.This issue affects WPC Badge Management for WooCommerce: from n/a through 2.4.0. network low complexity wpclever	8.8
2024-01-05	CVE-2023-52127	Unspecified vulnerability in Wpclever WPC Product Bundles for Woocommerce Cross-Site Request Forgery (CSRF) vulnerability in WPClever WPC Product Bundles for WooCommerce.This issue affects WPC Product Bundles for WooCommerce: from n/a through 7.3.1. network low complexity wpclever	8.8
2023-11-09	CVE-2023-34386	Unspecified vulnerability in Wpclever WPC Smart Wishlist for Woocommerce Cross-Site Request Forgery (CSRF) vulnerability in WPClever WPC Smart Wishlist for WooCommerce plugin <= 4.7.1 versions. network low complexity wpclever	8.8
2022-05-16	CVE-2022-1465	Unspecified vulnerability in Wpclever WPC Smart Wishlist for Woocommerce The WPC Smart Wishlist for WooCommerce WordPress plugin before 2.9.9 does not sanitise and escape a parameter before outputting it back in an attribute via an AJAX action, leading to a Reflected Cross-Site Scripting issue. network low complexity wpclever	6.1
2022-03-28	CVE-2022-0397	Unspecified vulnerability in Wpclever WPC Smart Wishlist for Woocommerce The WPC Smart Wishlist for WooCommerce WordPress plugin before 2.9.4 does not sanitise and escape the key parameter before outputting it back in the wishlist_quickview AJAX action's response (available to any authenticated user), leading to a Reflected Cross-Site Scripting network low complexity wpclever	5.4

Vulnerabilities > Wpclever {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Wpclever"}]}

Vulnerabilities > Wpclever