cleantalk
Vulnerabilities and Security Researches

eCommerce Product Catalog Plugin for WordPress, CVE-2023-25049

CVE, Research URL

CVE-2023-25049

Home page URL

Security reports for eCommerce Product Catalog Plugin for WordPress

Application

eCommerce Product Catalog Plugin for WordPress

Published on
Apr 07, 2023
Research Description
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in impleCode eCommerce Product Catalog Plugin for WordPress plugin <= 3.3.4 versions.
Affected versions
Min -, max 3.3.5.
Status
vulnerable
Previous vulnerability researches
eCommerce Product Catalog Plugin for WordPress (CVE-2023-25049) , Jun 07, 2024
eCommerce Product Catalog Plugin for WordPress (CVE-2023-1470) , Jun 07, 2024
eCommerce Product Catalog Plugin for WordPress (CVE-2021-24875) , Jun 07, 2024
eCommerce Product Catalog Plugin for WordPress (CVE-2024-32558) , Jun 07, 2024
eCommerce Product Catalog Plugin for WordPress (CVE-2021-4342) , Jun 07, 2024
New vulnerability
Football Pool (CVE-2025-5490) , Jun 20, 2025
CubeWP Forms &#8211; LeadGen &amp; Contact Form (CVE-2025-49880) , Jun 20, 2025
WP2LEADS | WordPress und KlickTipp einfach verbinden &#8211; WooCommerce und KlickTipp einfach verbinden (CVE-2025-49316) , Jun 20, 2025
Recover WooCommerce Cart Abandonment, Newsletter, Email Marketing, Marketing Automation By FunnelKit (CVE-2025-1562) , Jun 20, 2025
eCommerce Product Catalog Plugin for WordPress (CVE-2025-49331) , Jun 20, 2025