cleantalk
Vulnerabilities and Security Researches

Minimum and Maximum Quantity for WooCommerce, cfd487765ed4c271aa76e8ee3559962f437ddfa0

CVE, Research URL

cfd487765ed4c271aa76e8ee3559962f437ddfa0

Home page URL

Security reports for Minimum and Maximum Quantity for WooCommerce

Application

Minimum and Maximum Quantity for WooCommerce

Published on
Jul 18, 2023
Research Description
Minimum and Maximum Quantity for WooCommerce [min-and-max-quantity-for-woocommerce] < 1.1.1 WordPress Minimum and Maximum Quantity for WooCommerce Plugin <= 1.1.0 is vulnerable to Cross Site Scripting (XSS) Update the WordPress Minimum and Maximum Quantity for WooCommerce plugin to the latest available version (at least 1.1.1). Rafie Muhammad (Patchstack) discovered and reported this Cross Site Scripting (XSS) vulnerability in WordPress Minimum and Maximum Quantity for WooCommerce Plugin. This could allow a malicious actor to inject malicious scripts, such as redirects, advertisements, and other HTML payloads into your website which will be executed when guests visit your site. This vulnerability has been fixed in version 1.1.1.
Affected versions
max 1.1.1.
Status
vulnerable
Previous vulnerability researches
Minimum and Maximum Quantity for WooCommerce (CVE-2024-54227) , Dec 11, 2024
Minimum and Maximum Quantity for WooCommerce (cfd487765ed4c271aa76e8ee3559962f437ddfa0) , Jun 06, 2024
New vulnerability
OOPSpam Anti-Spam (CVE-2026-32544) , Mar 31, 2026
NotificationX &#8211; Best FOMO, Social Proof, WooCommerce Sales Popup &amp; Notification Bar Plugin With Elementor (CVE-2026-27042) , Mar 31, 2026
The Conference (CVE-2026-32335) , Mar 31, 2026
WP Booking System &#8211; Booking Calendar (CVE-2025-68515) , Mar 31, 2026
UPI QR Code Payment Gateway for WooCommerce (CVE-2025-67969) , Mar 31, 2026