Vulnerabilities and security researches forwoocommerce-predictive-search woocommerce-predictive-search

Jun 07, 2024

CVE, Research URL: 97266134f834ccd818d18425f0e8de2fab04a6a9
Home page URL: Security reports for Predictive Search for WooCommerce
Application: Predictive Search for WooCommerce
Date: May 15, 2015
Research Description: Predictive Search for WooCommerce [woocommerce-predictive-search] < 1.0.6 (closed) WordPress WooCommerce Predictive Search Plugin <= 1.0.5 - XSS This plugin is prone to a cross site scripting vulnerability in index.php rs parameter. Update the plugin.
Affected versions: max 1.0.6.
Status: vulnerable

Jun 10, 2024

CVE, Research URL: CVE-2023-32963
Home page URL: Security reports for Predictive Search for WooCommerce
Application: Predictive Search for WooCommerce
Date: Dec 13, 2024
Research Description: Missing Authorization vulnerability in a3rev Software WooCommerce Predictive Search allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WooCommerce Predictive Search: from n/a through 5.8.0.
Affected versions: max 1.0.6.
Status: vulnerable

Jul 14, 2024

CVE, Research URL: CVE-2024-38669
Home page URL: Security reports for Predictive Search for WooCommerce
Application: Predictive Search for WooCommerce
Date: Jul 20, 2024
Research Description: Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in a3rev Software WooCommerce Predictive Search allows Reflected XSS.This issue affects WooCommerce Predictive Search: from n/a through 6.0.1.
Affected versions: max 6.0.1.
Status: vulnerable