wpfactory
Web & CMS Pluginscommercial
Latest CVEs
The 15 most recently published vulnerabilities affecting wpfactory.
- CVE-2026-39437WordPress Min Max Step Quantity Limits Manager for WooCommerce plugin <= 5.2.2 - Reflected Cross Site Scripting (XSS) vulnerability7.1
- CVE-2026-24993WordPress Advanced WooCommerce Product Sales Reporting plugin <= 4.1.3 - SQL Injection vulnerability9.3
- CVE-2026-23977WordPress Helpdesk Support Ticket System for WooCommerce plugin <= 2.1.2 - Broken Access Control vulnerability7.5
- CVE-2026-24992WordPress Advanced WooCommerce Product Sales Reporting plugin <= 4.1.2 - Sensitive Data Exposure vulnerability5.3
- CVE-2025-69334WordPress Wishlist for WooCommerce plugin <= 3.3.0 - Cross Site Scripting (XSS) vulnerability6.5
- CVE-2025-62096WordPress Maximum Products per User for WooCommerce plugin <= 4.4.3 - Cross Site Scripting (XSS) vulnerability6.5
- CVE-2025-68528WordPress Free Shipping Bar: Amount Left for Free Shipping for WooCommerce plugin <= 2.4.9 - Cross Site Scripting (XSS) vulnerability6.5
- CVE-2025-57911WordPress Adverts Plugin <= 1.4 - Cross Site Scripting (XSS) Vulnerability6.5
- CVE-2025-57972WordPress Helpdesk Support Ticket System for WooCommerce plugin <= 2.1.1 - Broken Access Control vulnerability4.3
- CVE-2025-58985WordPress Additional Custom Product Tabs for WooCommerce Plugin <= 1.7.3 - Cross Site Scripting (XSS) Vulnerability6.5
- CVE-2025-49887WordPress Product XML Feed Manager for WooCommerce Plugin <= 2.9.3 - Remote Code Execution (RCE) Vulnerability9.9
- CVE-2025-30959WordPress Product XML Feed Manager for WooCommerce <= 2.9.2 - Broken Access Control Vulnerability6.5
- CVE-2025-49319WordPress Wishlist for WooCommerce <= 3.2.3 - Broken Access Control Vulnerability6.5
- CVE-2025-49987WordPress CRM ERP Business Solution plugin <= 1.13 - Broken Access Control Vulnerability5.3
- CVE-2025-49510WordPress Min Max Step Quantity Limits Manager for WooCommerce plugin <= 5.1.0 - Cross Site Request Forgery (CSRF) vulnerability4.3