cleantalk
Vulnerabilities and Security Researches

FriendStore for WooCommerce, CVE-2024-51784

CVE, Research URL

CVE-2024-51784

Home page URL

Security reports for FriendStore for WooCommerce

Application

FriendStore for WooCommerce

Published on
Nov 09, 2024
Research Description
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in VietFriend team FriendStore for WooCommerce allows Reflected XSS.This issue affects FriendStore for WooCommerce: from n/a through 1.4.2.
Affected versions
Min -, max 1.4.2.
Status
vulnerable
Previous vulnerability researches
FriendStore for WooCommerce (CVE-2024-51784) , Nov 08, 2024
BuddyPress Extended Friendship Request (CVE-2013-4944) , Jun 06, 2024
Friends (CVE-2024-12028) , Dec 07, 2024
Friends (CVE-2024-1978) , Jun 07, 2024
Friends (CVE-2025-7504) , Jul 12, 2025
New vulnerability
WP Register Profile With Shortcode (CVE-2025-4593) , Jul 13, 2025
Simple File List (CVE-2025-34085) , Jul 13, 2025
Pakke Envíos (CVE-2025-52819) , Jul 13, 2025
Gwolle Guestbook (CVE-2025-5807) , Jul 13, 2025
Tennis Court Bookings (CVE-2025-52787) , Jul 13, 2025