Yikes Inc Custom Product Tabs For Woocommerce vulnerabilities
2 known vulnerabilities affecting yikes_inc/custom_product_tabs_for_woocommerce.
Total CVEs
2
CISA KEV
0
Public exploits
1
Exploited in wild
1
Severity breakdown
MEDIUM2
Vulnerabilities
Page 1 of 1
CVE-2022-28666P2MEDIUMCVSS 5.3ExploitedPoC≥ n/a, ≤ 1.7.72022-07-21
CVE-2022-28666 [MEDIUM] CWE-287 CVE-2022-28666: Broken Access Control vulnerability in YIKES Inc. Custom Product Tabs for WooCommerce plugin <= 1.7.
Broken Access Control vulnerability in YIKES Inc. Custom Product Tabs for WooCommerce plugin <= 1.7.7 at WordPress leading to &yikes-the-content-toggle option update.
nvd
CVE-2022-43463P4MEDIUMCVSS 4.8≤ 1.7.92022-11-18
CVE-2022-43463 [MEDIUM] CWE-79 CVE-2022-43463: Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Custom Product Tabs for WooCommerc
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Custom Product Tabs for WooCommerce plugin <= 1.7.9 on WordPress.
nvd