Product Table for WooCommerce by CodeAstrology (wooproducttable.com) <= 3.5.1 - Information Exposure
CVE-2024-10813

7.5HIGH

Key Information:

Vendor: Wordpress
Status: Product Table For WooCommerce By Codeastrology (wooproducttable.com)
Vendor: CVE Published:; 23 November 2024

What is CVE-2024-10813?

The Product Table for WooCommerce plugin by CodeAstrology is impacted by a vulnerability that allows unauthenticated attackers to exploit the var_dump_table parameter. This security flaw enables potential access to sensitive data, which can be leveraged for malicious purposes. It is essential for users to apply timely updates to mitigate the risks associated with this exposure, particularly for those operating versions up to and including 3.5.1 of the plugin.

Affected Version(s)

Product Table for WooCommerce by CodeAstrology (wooproducttable.com) * <= 3.5.1

References

https://www.wordfence.com/threat-intel/vulnerabilities/id...

https://plugins.trac.wordpress.org/browser/woo-product-ta...

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Nov 23, 2024

Credit

Nathan

Wordpress

What is CVE-2024-10813?

Affected Version(s)

References

CVSS V3.1

Timeline

Credit