Really Simple Security logo

Log out
Get PRO

Latest

Input validation vulnerability in Product Enquiry for WooCommerce, WooCommerce product catalog 2.2.33.33

  • Severity: high-risk
  • Status: Fixed
  • Publication: September 26, 2024

A plugin called “Product Enquiry for WooCommerce” that is used for creating product catalogs on WordPress websites has a security vulnerability. This vulnerability allows attackers with a certain level of access to inject harmful code into the plugin, potentially giving them access to sensitive information or the ability to delete files. The vulnerability exists in all versions up to 2.2.33.32 and can be exploited through a specific page on the plugin.

Detected in:

PiWeb Product Enquiry or product catalog for WooCommerce fixed vulnerable versions:
Product Enquiry for WooCommerce, WooCommerce product catalog fixed vulnerable versions: >= * <= 2.2.33.33
Product Enquiry or product catalog for WooCommerce fixed vulnerable versions:

This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!

Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:

> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21

  • Incorrect?

Is this information incorrect? Please leave us a message.