cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score CVE-2024-0796,https://securityvulnerability.io/vulnerability/CVE-2024-0796,WooCommerce Professional Products Tables Vulnerable to Cross-Site Request Forgery,"The Active Products Tables for WooCommerce. Professional products tables for WooCommerce store plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.0.6.1. This is due to missing or incorrect nonce validation on several functions corresponding to AJAX actions. This makes it possible for unauthenticated attackers to invoke those functions via a forged request granted they can trick a site administrator into performing an action such as clicking on a link.",Wordpress,Active Products Tables for WooCommerce. Professional products tables for WooCommerce storeĀ ,4.3,MEDIUM,0.0005300000193528831,false,,false,false,false,,false,false,2024-02-05T21:21:43.887Z,0 CVE-2024-0797,https://securityvulnerability.io/vulnerability/CVE-2024-0797,Unauthorized Access Vulnerability in Active Products Tables for WooCommerce by WordPress,"The Active Products Tables for WooCommerce plugin for WordPress is susceptible to unauthorized access due to a lack of proper capability checks on multiple functions. This oversight affects all versions up to and including 1.0.6.1, permitting users with subscriber roles or higher to execute functions that are intended solely for admin use. As a result, this vulnerability could lead to unintended modifications and access to sensitive administrative capabilities.",Wordpress,Active Products Tables for WooCommerce. Professional products tables for WooCommerce storeĀ ,4.3,MEDIUM,0.0004799999878741801,false,,false,false,false,,false,false,2024-02-05T21:21:32.718Z,0 CVE-2022-1916,https://securityvulnerability.io/vulnerability/CVE-2022-1916,Active Products Tables for WooCommerce < 1.0.5 - Reflected Cross-Site-Scripting,"The Active Products Tables for WooCommerce. Professional products tables for WooCommerce store WordPress plugin before 1.0.5 does not sanitise and escape a parameter before outputting it back in the response of an AJAX action (available to both unauthenticated and authenticated users), leading to a Reflected cross-Site Scripting",Wordpress,Active Products Tables For WooCommerce. Professional Products Tables For WooCommerce Store,6.1,MEDIUM,0.0008900000248104334,false,,false,false,false,,false,false,2022-06-27T08:58:38.000Z,0