Phppoet Sysbasics Customize My Account For Woocommerce – Dashboard, Endpoints, Avatar & Menu Manager
2 CVEs affecting Phppoet Sysbasics Customize My Account For Woocommerce – Dashboard, Endpoints, Avatar & Menu Manager. Latest disclosed: 2026-06-18. Critical: 0, High: 0.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2026-12136 | Medium | 6.4 | 2026-06-18 | The Customize My Account For Woocommerce plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'sysbasics_user_avatar' shortcode in version… |
CVE-2026-12137 | Medium | 6.1 | 2026-06-18 | The SysBasics Customize My Account for WooCommerce – Dashboard, Endpoints, Avatar & Menu Manager plugin for WordPress is vulnerable to Reflected Cross-Site Scr… |