CVE-2024-13792 | Ex-Themes WooCommerce Food Plugin up to 3.3.2 on WordPress Shortcode code injection

Posted by Angelo Barbosa | Feb 20, 2025 | CVE

A vulnerability classified as critical was found in Ex-Themes WooCommerce Food Plugin up to 3.3.2 on WordPress. This vulnerability affects unknown code of the component Shortcode Handler. The manipulation leads to code injection.

This vulnerability was named CVE-2024-13792. The attack can be initiated remotely. There is no exploit available.

CVE-2024-13792 | Ex-Themes WooCommerce Food Plugin up to 3.3.2 on WordPress Shortcode code injection

Related Posts

CVE-2024-21877 | Enphase IQ Gateway prior 8.2.4225 URL Parameter path traversal

CVE-2024-32666 | Intel RAID Web Console null pointer dereference (intel-sa-00926)

CVE-2024-2732 | Themify Shortcodes Plugin up to 2.0.8 on WordPress cross site scripting

CVE-2024-10173 | didi DDMQ 1.0 Console Module improper authentication (Issue 37)