Vulnerabilities and security researches foraco-product-labels-for-woocommerce aco-product-labels-for-woocommerce
Direction: ascendingJun 06, 2024
Product Labels For Woocommerce (Sale Badges) # CVE-2024-24886
- CVE, Research URL
- Application
- Date
- Feb 08, 2024
- Research Description
- Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Acowebs Product Labels For Woocommerce (Sale Badges) allows Stored XSS.This issue affects Product Labels For Woocommerce (Sale Badges): from n/a through 1.5.3.
- Affected versions
-
max 1.5.4.
- Status
-
vulnerable
Dec 08, 2024
Product Labels For Woocommerce (Sale Badges) # CVE-2024-53817
- CVE, Research URL
- Application
- Date
- Dec 06, 2024
- Research Description
- Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Acowebs Product Labels For Woocommerce allows Blind SQL Injection.This issue affects Product Labels For Woocommerce: from n/a through 1.5.8.
- Affected versions
-
max 1.5.8.
- Status
-
vulnerable
Mar 27, 2025
Product Labels For Woocommerce (Sale Badges) # CVE-2024-12109
- CVE, Research URL
- Application
- Date
- Mar 25, 2025
- Research Description
- The Product Labels For Woocommerce (Sale Badges) WordPress plugin before 1.5.9 does not sanitize and escape a parameter before using it in a SQL statement, allowing admins to perform SQL injection attacks
- Affected versions
-
max 1.5.9.
- Status
-
vulnerable
Product Labels For Woocommerce (Sale Badges) # CVE-2024-10638
- CVE, Research URL
- Application
- Date
- Mar 25, 2025
- Research Description
- The Product Labels For Woocommerce (Sale Badges) WordPress plugin before 1.5.11 does not sanitize and escape a parameter before using it in a SQL statement, allowing admins to perform SQL injection attacks
- Affected versions
-
max 1.5.11.
- Status
-
vulnerable