GCVE - cpe:2.3:a:ithemes:manual_purchases:*:*:*:*:*:wordpress:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:ithemes:manual_purchases:*:*:*:*:*:wordpress:*:*

part: a version: * update: *

Vendor	Ithemes (`bc8bb476-bc31-5fe4-a12e-32529c077514`)
Product	Manual Purchases (`f3d18e6d-9f9f-5412-8307-3c85a35b7578`)
Edition	*
Language	*
Software edition	*
Target software	wordpress
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2015-9371`	vulnerable	2026-06-03 14:35:19.690626	Details available Manual Purchases Add-on for iThemes Exchange before 1.1.0 for WordPress has XSS via add_query_arg() and remove_query_arg(). Published: 2019-08-28T12:02:51.000Z Updated: 2024-08-06T08:51:05.316Z Open on db.gcve.eu Reference links https://blog.sucuri.net/2015/04/security-advisory-xss-vulnerability-affecting-multiple-wordpress-plugins.html https://ithemes.com/coordinated-wordpress-plugin-security-update/	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.