cleantalk
Vulnerabilities and Security Researches

YITH WooCommerce Ajax Product Filter, 21a5f00a631cbb9404c2e7f770857be57e7be35e

CVE, Research URL

21a5f00a631cbb9404c2e7f770857be57e7be35e

Home page URL

Security reports for YITH WooCommerce Ajax Product Filter

Application

YITH WooCommerce Ajax Product Filter

Published on
Jun 22, 2020
Research Description
YITH WooCommerce Ajax Product Filter [yith-woocommerce-ajax-navigation] < 3.11.1 WordPress YITH WooCommerce Ajax Product Filter plugin <= 3.11.0 - Authenticated Reflected Cross-Site Scripting (XSS) vulnerability Authenticated Reflected Cross-Site Scripting (XSS) vulnerability found by John Castro in WordPress YITH WooCommerce Ajax Product Filter plugin (versions <= 3.11.0).
Affected versions
max 3.11.1.
Status
vulnerable
Previous vulnerability researches
YITH WooCommerce Ajax Product Filter (21a5f00a631cbb9404c2e7f770857be57e7be35e) , Jun 07, 2024
YITH WooCommerce Ajax Product Filter (CVE-2024-37943) , Jul 14, 2024
New vulnerability
OOPSpam Anti-Spam (CVE-2026-32544) , Mar 31, 2026
NotificationX &#8211; Best FOMO, Social Proof, WooCommerce Sales Popup &amp; Notification Bar Plugin With Elementor (CVE-2026-27042) , Mar 31, 2026
The Conference (CVE-2026-32335) , Mar 31, 2026
WP Booking System &#8211; Booking Calendar (CVE-2025-68515) , Mar 31, 2026
UPI QR Code Payment Gateway for WooCommerce (CVE-2025-67969) , Mar 31, 2026