CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Yithemes: >> Yith Woocommerce Product Add-Ons >> 4.9.2 Security Vulnerabilities

CVE-2024-50448

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in YITH YITH WooCommerce Product Add-Ons allows Reflected XSS.This issue affects YITH WooCommerce Product Add-Ons: from n/a through 4.14.1.

CVSS Score

7.1

EPSS Score

0.001

Published

2024-10-28

CVE-2024-35680

Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') vulnerability in YITH YITH WooCommerce Product Add-Ons allows Code Injection.This issue affects YITH WooCommerce Product Add-Ons: from n/a through 4.9.2.

CVSS Score

5.3

EPSS Score

0.002

Published

2024-06-10

Page 1

Vulnerabilities

Vulnerable Software

Yithemes: >> Yith Woocommerce Product Add-Ons >> 4.9.2 Security Vulnerabilities

Products

Pricing

Contact Us