cleantalk
Vulnerabilities and Security Researches

Products Quick View for WooCommerce, de3e06615019aff108fb9f37a06bdb545ac61b79

CVE, Research URL

de3e06615019aff108fb9f37a06bdb545ac61b79

Home page URL

Security reports for Products Quick View for WooCommerce

Application

Products Quick View for WooCommerce

Published on
Aug 14, 2023
Research Description
Products Quick View for WooCommerce [woocommerce-products-quick-view] < 2.3.0 Products Quick View for WooCommerce <= 2.2.0 - Missing Authorization The Products Quick View for WooCommerce plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the quick_view_prettyphoto_custom_template_load() and quick_view_custom_template_load() functions called via AJAX actions in versions up to, and including, 2.2.0. This makes it possible for authenticated attackers, with subscriber-level access and above, to load templates and view products.
Affected versions
max 2.3.0.
Status
vulnerable
Previous vulnerability researches
Products Quick View for WooCommerce (a258db14fac7c6fbd217ffebb5a812d26ac46780) , Jun 16, 2026
Products Quick View for WooCommerce (de3e06615019aff108fb9f37a06bdb545ac61b79) , Jun 16, 2026
Products Quick View for WooCommerce (d1b0f784da3ca0f399c542515fda1423816819f0) , Jun 06, 2024
New vulnerability
Survey Maker &#8211; Best WordPress Survey Plugin (fc04ca746b32e86094504fa87e14fcc6e895ad88) , Jun 16, 2026
Survey Maker &#8211; Best WordPress Survey Plugin (a3f2e0c73a4c81115beecf8f1d689bce0c191743) , Jun 16, 2026
Survey Maker &#8211; Best WordPress Survey Plugin (bd2e0643-c83b-4ca6-9332-66e4c49252ba) , Jun 16, 2026
Survey Maker &#8211; Best WordPress Survey Plugin (43328a5b05bd39176219d88c42154bd551884246) , Jun 16, 2026
Ultimate Product Catalog (1e3e9939-9948-4184-98cf-7a76b5ee7da9) , Jun 16, 2026