cleantalk
Vulnerabilities and Security Researches

Brands for WooCommerce, CVE-2023-23667

CVE, Research URL

CVE-2023-23667

Home page URL

Security reports for Brands for WooCommerce

Application

Brands for WooCommerce

Published on
May 18, 2023
Research Description
Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in BeRocket Brands for WooCommerce plugin <= 3.7.0.6 versions.
Affected versions
Min -, max 3.8.2.3.
Status
vulnerable
Previous vulnerability researches
Brands for WooCommerce (CVE-2023-44149) , Jun 10, 2024
Brands for WooCommerce (CVE-2023-23667) , Jun 07, 2024
Brands for WooCommerce (978edf968cc1bb14ad6e4fc2a47804615027039d) , Jun 07, 2024
New vulnerability
oik (CVE-2025-54671) , Aug 06, 2025
StoreKeeper for WooCommerce (CVE-2025-48148) , Aug 06, 2025
Connector for Gravity Forms and Google Sheets (CVE-2025-54681) , Aug 06, 2025
AI Engine , Aug 06, 2025
Performance Lab , Aug 06, 2025