Vendor
Wpxpo
Products
3
CVEs
7
Across products
7
Status
Private
Products
3- 3 CVEs
- 3 CVEs
- 1 CVE
Recent CVEs
7| CVE | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2024-30224 | Cri | 0.65 | 10.0 | 0.01 | Mar 28, 2024 | Deserialization of Untrusted Data vulnerability in Wholesale Team WholesaleX.This issue affects WholesaleX: from n/a through 1.3.2. | |
| CVE-2024-23512 | Hig | 0.57 | 8.7 | 0.00 | Feb 12, 2024 | Deserialization of Untrusted Data vulnerability in wpxpo ProductX – WooCommerce Builder & Gutenberg WooCommerce Blocks.This issue affects ProductX – WooCommerce Builder & Gutenberg WooCommerce Blocks: from n/a through 3.1.4. | |
| CVE-2023-36385 | Hig | 0.46 | 7.1 | 0.00 | Jul 25, 2023 | Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in wpxpo PostX – Gutenberg Post Grid Blocks plugin <= 2.9.9 versions. | |
| CVE-2024-30234 | Med | 0.42 | 6.5 | 0.00 | Mar 26, 2024 | Missing Authorization vulnerability in Wholesale Team WholesaleX.This issue affects WholesaleX: from n/a through 1.3.1. | |
| CVE-2024-30233 | Med | 0.42 | 6.5 | 0.01 | Mar 26, 2024 | Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Wholesale Team WholesaleX.This issue affects WholesaleX: from n/a through 1.3.1. | |
| CVE-2024-50443 | Med | 0.35 | 5.4 | 0.00 | Oct 28, 2024 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in WPXPO PostX ultimate-post.This issue affects PostX: from n/a through <= 4.1.12. | |
| CVE-2024-31246 | Med | 0.35 | 5.4 | 0.00 | Jun 9, 2024 | Missing Authorization vulnerability in WPXPO PostX ultimate-post allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects PostX: from n/a through <= 3.2.3. |