Code Injection Vulnerability in WC Product Table Lite

CVE-2024-43128

6.5MEDIUM

Key Information

Vendor: Wc Product Table
Status: WooCommerce Product Table Lite
Vendor: CVE Published:; 13 August 2024

Summary

Improper Control of Generation of Code ('Code Injection') vulnerability in WC Product Table WooCommerce Product Table Lite allows Code Injection.This issue affects WooCommerce Product Table Lite: from n/a through 3.5.1.

Affected Version(s)

WooCommerce Product Table Lite <= 3.5.1

CVSS V3.1

Score:

6.5

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

Low

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published.
Aug 13, 2024
Vulnerability Reserved.
Aug 7, 2024

Collectors

NVD DatabaseMitre Database

Credit

stealthcopter (Patchstack Alliance)