Live Vulnerability Intelligence
Threat Database
Search CVEs, inspect descriptions, and open detail pages with AI-assisted technical context.
Threat Entry
Updated 2025-01-29
CVE-2023-0537 - Product Slider For Woocommerce Plugin
The Product Slider For WooCommerce Lite WordPress plugin through 1.1.7 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks
PLUGIN
Product Slider For Woocommerce
CVE-2023-0537
Risk Score
Threat Entry
Updated 2025-03-21
CVE-2023-0166 - Product Slider For Woocommerce Plugin
The Product Slider for WooCommerce by PickPlugins WordPress plugin before 1.13.42 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks.
PLUGIN
Product Slider For Woocommerce
CVE-2023-0166
Risk Score
Threat Entry
Updated 2024-11-21
CVE-2022-2382 - Product Slider For Woocommerce Plugin
The Product Slider for WooCommerce WordPress plugin before 2.5.7 has flawed CSRF checks and lack authorisation in some of its AJAX actions, allowing any authenticated users, such as subscriber to call them. One in particular could allow them to delete arbitrary blog options.
PLUGIN
Product Slider For Woocommerce
CVE-2022-2382
Risk Score
Threat Entry
Updated 2024-11-21
CVE-2021-24300 - Product Slider For Woocommerce Plugin
The slider import search feature of the PickPlugins Product Slider for WooCommerce WordPress plugin before 1.13.22 did not properly sanitised the keyword GET parameter, leading to reflected Cross-Site Scripting issue
PLUGIN
Product Slider For Woocommerce
CVE-2021-24300
Risk Score