CVE-2024-12435 | a3rev Compare Products for WooCommerce Plugin up to 3.2.1 on WordPress s_feature cross site scripting

Inserito da Angelo Barbosa | Gen 7, 2025 | CVE

A vulnerability, which was classified as problematic, has been found in a3rev Compare Products for WooCommerce Plugin up to 3.2.1 on WordPress. Affected by this issue is some unknown functionality. The manipulation of the argument s_feature leads to cross site scripting.

This vulnerability is handled as CVE-2024-12435. The attack may be launched remotely. There is no exploit available.

CVE-2024-12435 | a3rev Compare Products for WooCommerce Plugin up to 3.2.1 on WordPress s_feature cross site scripting

Post correlati

CVE-2024-54246 | Think201 FAQs Plugin up to 1.0.2 on WordPress cross site scripting

CVE-2024-7180 | TOTOLINK A3600R 4.1.2cu.5182_B20201102 /cgi-bin/cstecgi.cgi setPortForwardRules comment buffer overflow

CVE-2024-48141 | Zhipu AI CodeGeeX 2.17.0 Chatbox injection

CVE-2024-4085 | Faustball Tabellen Plugin up to 2.0.4 on WordPress cross site scripting