Advance Search For Woocommerce
Approved changes feed: RSS · Atom
cpe:2.3:a:multidots:advance_search_for_woocommerce:*:*:*:*:*:wordpress:*:*
part: a version: * update: *
| Vendor | Multidots (5250f8e8-1dec-5ba1-827d-239ecebd5682) |
|---|---|
| Product | Advance Search For Woocommerce (f20f7a06-cdaa-5467-af88-2e0e5a15a3ef) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | wordpress |
| Target hardware | * |
| Other | * |
| Notes | Imported from purl2cpe mapping |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
pkg:deb/debian/distcc |
purl2cpe | 2026-06-01 10:17:55.070074 |
pkg:deb/ubuntu/distcc |
purl2cpe | 2026-06-01 10:17:55.070077 |
pkg:github/distcc/distcc |
purl2cpe | 2026-06-01 10:17:55.070080 |
pkg:rpm/fedora/distcc |
purl2cpe | 2026-06-01 10:17:55.070083 |
pkg:rpm/opensuse/distcc |
purl2cpe | 2026-06-01 10:17:55.070086 |
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2018-11486 |
vulnerable | 2026-06-08 05:10:38.567444 |
Details available
An issue was discovered in the MULTIDOTS Advance Search for WooCommerce plugin 1.0.9 and earlier for WordPress. This plugin is vulnerable to a stored Cross-site scripting (XSS) vulnerability. A non-authenticated user can save the plugin settings and inject malicious JavaScript code in the Custom CSS textarea field, which will be loaded on every site page.
Published: 2018-06-01T15:00:00.000Z
Updated: 2024-08-05T08:10:14.709Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.