Wpfactory Ean_for_woocommerce
4 CVEs affecting Wpfactory Ean_for_woocommerce. Latest disclosed: 2024-05-17. Critical: 0, High: 1.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2024-34370 | High | 7.2 | 2024-05-17 | Improper Privilege Management vulnerability in WPFactory EAN for WooCommerce allows Privilege Escalation.This issue affects EAN for WooCommerce: from n/a throu… |
CVE-2023-6892 | Medium | 6.4 | 2024-04-18 | The EAN for WooCommerce plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'alg_wc_ean_product_meta' shortcode in all versions… |
CVE-2023-0062 | Medium | 5.4 | 2023-02-06 | The EAN for WooCommerce WordPress plugin before 4.4.3 does not validate and escape some of its shortcode attributes before outputting them back in a page/post… |
CVE-2023-6897 | Medium | 4.3 | 2024-04-18 | The EAN for WooCommerce plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 4.9.2 via the the 'alg_wc_… |