CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0CVE-2018-8711 – WOOF - Products Filter for WooCommerce <= 1.1.9 - Local File Inclusion
https://notcve.org/view.php?id=CVE-2018-8711
A local file inclusion issue was discovered in the WooCommerce Products Filter (aka WOOF) plugin before 2.2.0 for WordPress, as demonstrated by the shortcode parameter in a woof_redraw_woof action. The vulnerability is due to the lack of args/input validation on render_html before allowing it to be called by extract(), a PHP built-in function. Because of this, the supplied args/input can be used to overwrite the $pagepath variable, which then could lead to a local file inclusion attack. Se ha descubierto un problema de inclusión de archivos locales en el plugin WooCommerce Products Filter (también conocido como WOOF), en versiones anteriores a la 2.2.0, para WordPress, tal y como demuestra el parámetro shortcode en una acción woof_redraw_woof. La vulnerabilidad se debe a la falta de validación de argumentos/entradas en render_html antes de permitir que sea llamado por extract(), una función ya integrada en PHP. • https://sec-consult.com/en/blog/advisories/arbitrary-shortcode-execution-local-file-inclusion-in-woof-pluginus-net/index.html https://wordpress.org/plugins/woocommerce-products-filter/#developers https://www.woocommerce-filter.com/update-woocommerce-products-filter-v-2-2-0 • CWE-20: Improper Input Validation CWE-98: Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2016-10112 – WooCommerce <= 2.6.8 - Authenticated Stored Cross-Site Scripting
https://notcve.org/view.php?id=CVE-2016-10112
Cross-site scripting (XSS) vulnerability in the WooCommerce plugin before 2.6.9 for WordPress allows remote authenticated administrators to inject arbitrary web script or HTML by providing crafted tax-rate table values in CSV format. Vulnerabilidad de XSS en el plugin WooCommerce en versiones anteriores a 2.6.9 para WordPress permite a administradores remotos autenticados inyectar secuencias de comandos web o HTML arbitrarios proporcionando valores de tabla tax-rate manipulados en formato CSV. • http://www.securityfocus.com/bid/95292 https://wordpress.org/plugins/woocommerce/changelog • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 1CVE-2016-10987 – افزونه پیامک ووکامرس Persian WooCommerce SMS < 3.3.3 - Cross-Site Scripting
https://notcve.org/view.php?id=CVE-2016-10987
The persian-woocommerce-sms plugin before 3.3.4 for WordPress has ps_sms_numbers XSS. El plugin persian-woocommerce-sms versiones anteriores a 3.3.4 para WordPress, presenta una vulnerabilidad de tipo XSS del parámetro ps_sms_numbers. The persian-woocommerce-sms plugin before 3.3.3 for WordPress has ps_sms_numbers XSS. • https://0x62626262.wordpress.com/2016/04/21/persian-woocommerce-sms-xss-vulnerability https://wordpress.org/plugins/persian-woocommerce-sms/#developers https://wpvulndb.com/vulnerabilities/8463 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 0CVE-2015-10113 – WooFramework Tweaks Plugin wooframework-tweaks.php admin_screen_logic redirect
https://notcve.org/view.php?id=CVE-2015-10113
A vulnerability classified as problematic was found in WooFramework Tweaks Plugin up to 1.0.1 on WordPress. Affected by this vulnerability is the function admin_screen_logic of the file wooframework-tweaks.php. The manipulation of the argument url leads to open redirect. The attack can be launched remotely. Upgrading to version 1.0.2 is able to address this issue. • https://github.com/wp-plugins/wooframework-tweaks/commit/3b57d405149c1a59d1119da6e0bb8212732c9c88 https://vuldb.com/?ctiid.230653 https://vuldb.com/?id.230653 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') CWE-601: URL Redirection to Untrusted Site ('Open Redirect') •
CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 0CVE-2015-10112 – WooFramework Branding Plugin wooframework-branding.php admin_screen_logic redirect
https://notcve.org/view.php?id=CVE-2015-10112
A vulnerability classified as problematic has been found in WooFramework Branding Plugin up to 1.0.1 on WordPress. Affected is the function admin_screen_logic of the file wooframework-branding.php. The manipulation of the argument url leads to open redirect. It is possible to launch the attack remotely. Upgrading to version 1.0.2 is able to address this issue. • https://github.com/wp-plugins/wooframework-branding/commit/f12fccd7b5eaf66442346f748c901ef504742f78 https://vuldb.com/?ctiid.230652 https://vuldb.com/?id.230652 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') CWE-601: URL Redirection to Untrusted Site ('Open Redirect') •