Vulnerabilities and security researches foryith-woocommerce-compare yith-woocommerce-compare

Jun 06, 2024

CVE, Research URL: CVE-2019-16251
Home page URL: Security reports for YITH WooCommerce Compare
Application: YITH WooCommerce Compare
Date: Oct 31, 2019
Research Description: plugin-fw/lib/yit-plugin-panel-wc.php in the YIT Plugin Framework through 3.3.8 for WordPress allows authenticated options changes.
Affected versions: max 2.1.0.
Status: vulnerable

CVE, Research URL: CVE-2024-32699
Home page URL: Security reports for YITH WooCommerce Compare
Application: YITH WooCommerce Compare
Date: Apr 24, 2024
Research Description: Cross-Site Request Forgery (CSRF) vulnerability in YITH YITH WooCommerce Compare.This issue affects YITH WooCommerce Compare: from n/a through 2.37.0.
Affected versions: max 2.38.0.
Status: vulnerable

Feb 27, 2026

CVE, Research URL: CVE-2026-22333
Home page URL: Security reports for YITH WooCommerce Compare
Application: YITH WooCommerce Compare
Date: Feb 19, 2026
Research Description: Deserialization of Untrusted Data vulnerability in YITHEMES YITH WooCommerce Compare yith-woocommerce-compare allows Object Injection.This issue affects YITH WooCommerce Compare: from n/a through <= 3.6.0.
Affected versions: max 3.6.0.
Status: vulnerable