cleantalk
Vulnerabilities and Security Researches

Product Category Showcase for WooCommerce, 667fdaf13fdec4b024da541ed2dc18942c8e265d

CVE, Research URL

667fdaf13fdec4b024da541ed2dc18942c8e265d

Home page URL

Security reports for Product Category Showcase for WooCommerce

Application

Product Category Showcase for WooCommerce

Published on
Sep 04, 2023
Research Description
Product Category Showcase for WooCommerce [wc-category-showcase] < 2.0.0 WordPress Product Category Showcase for WooCommerce Plugin <= 1.1.9 is vulnerable to Cross Site Request Forgery (CSRF) No patched version is available. Lana Codes discovered and reported this Cross Site Request Forgery (CSRF) vulnerability in WordPress Product Category Showcase for WooCommerce Plugin. This could allow a malicious actor to force higher privileged users to execute unwanted actions under their current authentication. This vulnerability has not been known to be fixed yet.
Affected versions
max 2.0.0.
Status
vulnerable
Previous vulnerability researches
Product Category Showcase for WooCommerce (667fdaf13fdec4b024da541ed2dc18942c8e265d) , Jun 06, 2024
Product Category Showcase for WooCommerce (CVE-2022-47150) , Jun 13, 2026
New vulnerability
Product Filter Widget for Elementor (CVE-2023-33999) , Jun 13, 2026
Market Exporter (CVE-2023-33999) , Jun 13, 2026
WP Coupons and Deals &#8211; WordPress Coupon Plugin (CVE-2023-33999) , Jun 13, 2026
WP Adminify &#8211; WordPress Dashboard Customization | Custom Login | Admin Columns | Dashboard Widget | Media Library Folders (CVE-2023-33999) , Jun 13, 2026
Passster &#8211; Password Protect Pages and Content (CVE-2023-33999) , Jun 13, 2026