Vulnerabilities and security researches forpremmerce-woocommerce-product-filter premmerce-woocommerce-product-filter
Direction: ascendingJun 07, 2024
Premmerce Product Filter for WooCommerce # e523d780d4f901e29abc0444719e3cae44616dcc
- CVE, Research URL
- Application
- Date
- Feb 28, 2022
- Research Description
- Premmerce Product Filter for WooCommerce [premmerce-woocommerce-product-filter] < 3.7.2 WordPress Premmerce Product Filter for WooCommerce plugin <= 3.6.1 - Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability discovered in WordPress Premmerce Product Filter for WooCommerce plugin (versions <= 3.6.1).
- Affected versions
-
Min -, max -.
- Status
-
vulnerable
Premmerce Product Filter for WooCommerce # CVE-2024-31359
- CVE, Research URL
- Application
- Date
- Jun 09, 2024
- Research Description
- Missing Authorization vulnerability in Premmerce Premmerce Product Filter for WooCommerce.This issue affects Premmerce Product Filter for WooCommerce: from n/a through 3.7.2.
- Affected versions
-
Min -, max -.
- Status
-
vulnerable
Nov 15, 2024
Premmerce Product Filter for WooCommerce # CVE-2022-4974
- CVE, Research URL
- Application
- Date
- Oct 16, 2024
- Research Description
- The Freemius SDK, as used by hundreds of WordPress plugin and theme developers, was vulnerable to Cross-Site Request Forgery and Information disclosure due to missing capability checks and nonce protection on the _get_debug_log, _get_db_option, and the _set_db_option functions in versions up to, and including 2.4.2. Any WordPress plugin or theme running a version of Freemius less than 2.4.3 is vulnerable.
- Affected versions
-
Min -, max -.
- Status
-
vulnerable