Acowebs: >> Product Labels For Woocommerce (Sale Badges) >> 1.0.4 Security Vulnerabilities
The Product Labels For Woocommerce (Sale Badges) WordPress plugin before 1.5.11 does not sanitize and escape a parameter before using it in a SQL statement, allowing admins to perform SQL injection attacks
CVSS Score
4.1
EPSS Score
0.0
Published
2025-03-25
The Product Labels For Woocommerce (Sale Badges) WordPress plugin before 1.5.9 does not sanitize and escape a parameter before using it in a SQL statement, allowing admins to perform SQL injection attacks
CVSS Score
4.1
EPSS Score
0.0
Published
2025-03-25
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Acowebs Product Labels For Woocommerce (Sale Badges) allows Stored XSS.This issue affects Product Labels For Woocommerce (Sale Badges): from n/a through 1.5.3.
CVSS Score
5.9
EPSS Score
0.0
Published
2024-02-08