Vulnerabilities and security researches forproduct-blocks product-blocks
Direction: ascendingProductX – WooCommerce Builder & Gutenberg WooCommerce Blocks # CVE-2024-23512
- CVE, Research URL
- Home page URL
-
Security reports for ProductX – WooCommerce Builder & Gutenberg WooCommerce Blocks
- Date
- Feb 12, 2024
- Research Description
- Deserialization of Untrusted Data vulnerability in wpxpo ProductX – WooCommerce Builder & Gutenberg WooCommerce Blocks.This issue affects ProductX – WooCommerce Builder & Gutenberg WooCommerce Blocks: from n/a through 3.1.4.
- Affected versions
-
Min -, max -.
- Status
-
vulnerable
ProductX – WooCommerce Builder & Gutenberg WooCommerce Blocks # 017045168c64e0e4ed8e001360b529fe2937085e
- CVE, Research URL
- Home page URL
-
Security reports for ProductX – WooCommerce Builder & Gutenberg WooCommerce Blocks
- Date
- May 22, 2022
- Research Description
- ProductX – WooCommerce Builder & Gutenberg WooCommerce Blocks [product-blocks] < 3.0.0 ProductX – Gutenberg WooCommerce Blocks – WooCommerce Builder, Wishlist for WooCommerce, Products Comparison, Quick View, Online Store – All in One Solution <= 2.2.5 - Multiple Cross-Site Scripting ProductX – Gutenberg WooCommerce Blocks – WooCommerce Builder, Wishlist for WooCommerce, Products Comparison, Quick View, Online Store – All in One Solution in versions up to and including 2.2.5 is vulnerable to Cross-Site Scripting due to insufficient sanitization and output escaping. This makes it possible for attackers to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.
- Affected versions
-
Min -, max -.
- Status
-
vulnerable
ProductX – WooCommerce Builder & Gutenberg WooCommerce Blocks # CVE-2023-45271
- CVE, Research URL
- Home page URL
-
Security reports for ProductX – WooCommerce Builder & Gutenberg WooCommerce Blocks
- Date
- Jan 02, 2025
- Research Description
- Missing Authorization vulnerability in WowStore Team ProductX – Gutenberg WooCommerce Blocks allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects ProductX – Gutenberg WooCommerce Blocks: from n/a through 2.7.8.
- Affected versions
-
Min -, max -.
- Status
-
vulnerable
ProductX – WooCommerce Builder & Gutenberg WooCommerce Blocks # CVE-2025-39571
- CVE, Research URL
- Home page URL
-
Security reports for ProductX – WooCommerce Builder & Gutenberg WooCommerce Blocks
- Date
- Apr 16, 2025
- Research Description
- WooCommerce Builder & Gutenberg WooCommerce Blocks – WowStore [product-blocks] < 4.2.5 CVE-2025-39571 [en] Missing Authorization vulnerability in WPXPO WowStore allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects WowStore: from n/a through 4.2.4.
- Affected versions
-
Min -, max -.
- Status
-
vulnerable