Wpdevart Pricing Table Builder vulnerabilities
3 known vulnerabilities affecting wpdevart/pricing_table_builder.
Total CVEs
3
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
HIGH2MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2023-0900P3HIGHCVSS 7.2PoC≤ 1.1.62023-06-05
CVE-2023-0900 [HIGH] CWE-89 CVE-2023-0900: The Pricing Table Builder WordPress plugin through 1.1.6 does not properly sanitise and escape a par
The Pricing Table Builder WordPress plugin through 1.1.6 does not properly sanitise and escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable by high-privilege users such as admins.
nvd
CVE-2025-62886P4HIGHCVSS 7.1≤ 1.5.32025-10-27
CVE-2025-62886 [HIGH] CWE-352 CVE-2025-62886: Cross-Site Request Forgery (CSRF) vulnerability in wpdevart Pricing Table builder wpdevart-pricing-t
Cross-Site Request Forgery (CSRF) vulnerability in wpdevart Pricing Table builder wpdevart-pricing-table allows Stored XSS.This issue affects Pricing Table builder: from n/a through <= 1.5.3.
nvd
CVE-2022-0640P4MEDIUMCVSS 6.1fixed in 1.1.52022-03-21
CVE-2022-0640 [MEDIUM] CWE-79 CVE-2022-0640: The Pricing Table Builder WordPress plugin before 1.1.5 does not sanitize and escape the postid para
The Pricing Table Builder WordPress plugin before 1.1.5 does not sanitize and escape the postid parameter before outputting it back in an admin page, leading to a Reflected Cross-Site Scripting.
nvd