VYPR

Woo Permalink Manager

by WordPress

CVEs (2)

  • CVE-2024-27971HigMay 17, 2024
    risk 0.59cvss 8.3epss 0.01

    Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Premmerce Premmerce Permalink Manager for WooCommerce woo-permalink-manager.This issue affects Premmerce Permalink Manager for WooCommerce: from n/a through…

  • CVE-2024-2738MedApr 9, 2024
    risk 0.40cvss 6.1epss 0.01

    The Permalink Manager Lite and Pro plugins for WordPress are vulnerable to Reflected Cross-Site Scripting via the ‘s’ parameter in multiple instances in all versions up to, and including, 2.4.3.1 due to insufficient input sanitization and output escaping. This makes it…