CVE-2024-10959 | Active Products Tables for WooCommerce Plugin up to 1.0.6.5 on WordPress Shortcode woot_get_smth code injection

Posted by Angelo Barbosa | Dec 10, 2024 | CVE

A vulnerability was found in Active Products Tables for WooCommerce Plugin up to 1.0.6.5 on WordPress. It has been declared as critical. Affected by this vulnerability is the function woot_get_smth of the component Shortcode Handler. The manipulation leads to code injection.

This vulnerability is known as CVE-2024-10959. The attack can be launched remotely. There is no exploit available.

CVE-2024-10959 | Active Products Tables for WooCommerce Plugin up to 1.0.6.5 on WordPress Shortcode woot_get_smth code injection

Related Posts

CVE-2024-41655 | danocmx node-tf2-item-format up to 5.9.13 redos (GHSA-8h55-q5qq-p685)

CVE-2024-2226 | Otter Block Plugin up to 2.6.4 on WordPress cross site scripting

CVE-2022-2439 | Easy Digital Downloads Plugin up to 3.3.3 on WordPress Phar deserialization

CVE-2024-47131 | Delta Electronics DIAScreen up to 1.4.x BACnetObjectInfo stack-based overflow (icsa-24-312-02)