VYPR

Booster For Woocommerce

by Booster

Source repositories

CVEs (23)

  • CVE-2024-9170Nov 26, 2024
    risk 0.00cvss epss 0.00

    The Booster for WooCommerce plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's wcj_product_meta shortcode in all versions up to, and including, 7.2.3 due to insufficient input sanitization and output escaping on user supplied attributes. This…

  • CVE-2024-9239Nov 20, 2024
    risk 0.00cvss epss 0.00

    The Booster for WooCommerce plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg & remove_query_arg without appropriate escaping on the URL in all versions up to, and including, 7.2.3. This makes it possible for unauthenticated…

  • CVE-2023-48747Jun 4, 2024
    risk 0.00cvss epss 0.00

    Improper Authentication vulnerability in Pluggabl LLC Booster for WooCommerce allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Booster for WooCommerce: from n/a through 7.1.2.

Page 2 of 2