Yith Woocommerce Product Add-Ons vulnerabilities
2 known vulnerabilities affecting yith/yith_woocommerce_product_add-ons.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH2
Vulnerabilities
Page 1 of 1
CVE-2023-49777P3HIGHCVSS 8.8≥ n/a, ≤ 4.3.02023-12-31
CVE-2023-49777 [HIGH] CWE-502 CVE-2023-49777: Deserialization of Untrusted Data vulnerability in YITH YITH WooCommerce Product Add-Ons.This issue
Deserialization of Untrusted Data vulnerability in YITH YITH WooCommerce Product Add-Ons.This issue affects YITH WooCommerce Product Add-Ons: from n/a through 4.3.0.
nvd
CVE-2026-42383P3HIGHCVSS 7.6≥ n/a, ≤ 4.29.02026-05-20
CVE-2026-42383 [HIGH] CWE-89 CVE-2026-42383: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability i
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in YITH YITH WooCommerce Product Add-Ons allows Blind SQL Injection.
This issue affects YITH WooCommerce Product Add-Ons: from n/a through 4.29.0.
nvd