Syntax: kev:true severity:critical epss:>0.95 vendor:cisco patch:false
Filters
Severity
Exploitation
Data Source
Data Quality
Vendor
CWE — Weakness Type
Clear all
Top 20 matches Showing top matches — use filters or a more specific query to narrow
12 HIGH8 MEDIUM
CVE-2026-34902
HIGH CVSS 7.1
Find Similar
Unauthenticated Cross Site Scripting (XSS) in WooCommerce Product Table Lite <= 4.6.3 versions.
NVD RRF 0.016
CVE-2026-39437
HIGH CVSS 7.1
Find Similar
Unauthenticated Cross Site Scripting (XSS) in Min Max Step Quantity Limits Manager for WooCommerce <= 5.2.2 versions.
NVD RRF 0.016
CVE-2025-12398
MEDIUM CVSS 6.1
Find Similar
The Product Table for WooCommerce plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'search_key' parameter in all versions up to, and including, 5.0.8 due to insufficient in
NVD RRF 0.016
CVE-2026-45437
HIGH CVSS 7.1
Find Similar
Unauthenticated Cross Site Scripting (XSS) in Product Filter Widget for Elementor <= 1.0.6 versions.
NVD RRF 0.016
CVE-2025-22638
MEDIUM CVSS 6.5
Find Similar
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in acowebs Product Table For WooCommerce product-table-for-woocommerce allows Stored XSS.This issue a
NVD RRF 0.015
CVE-2024-13472
HIGH CVSS 7.3
Find Similar
The The WooCommerce Product Table Lite plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 3.9.4. This is due to the software allowing users to ex
wcproducttable
NVD RRF 0.015
CVE-2024-10899
HIGH CVSS 7.3
Find Similar
The The WooCommerce Product Table Lite plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 3.8.6. This is due to the software allowing users to ex
wcproducttable
NVD RRF 0.015
CVE-2026-32450
MEDIUM CVSS 6.5
Find Similar
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in RealMag777 Active Products Tables for WooCommerce profit-products-tables-for-woocommerce allows DO
NVD RRF 0.014
CVE-2026-40770
HIGH CVSS 7.1
Find Similar
Unauthenticated Cross Site Scripting (XSS) in Coupon Affiliates <= 7.5.3 versions.
NVD RRF 0.014
CVE-2025-48266
MEDIUM CVSS 6.5
Find Similar
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in RealMag777 Active Products Tables for WooCommerce profit-products-tables-for-woocommerce allows St
NVD RRF 0.014
CVE-2026-39451
MEDIUM CVSS 6.3
Find Similar
Unauthenticated Cross Site Scripting (XSS) in WP Google Review Slider <= 18.0 versions.
NVD RRF 0.013
CVE-2026-48876
HIGH CVSS 7.1
Find Similar
Unauthenticated Cross Site Scripting (XSS) in Stop Spammers <= 2026.3 versions.
NVD RRF 0.013
CVE-2026-39540
MEDIUM CVSS 6.5
Find Similar
Subscriber Cross Site Scripting (XSS) in Shipment Tracker for Woocommerce <= 1.5.3.2 versions.
NVD RRF 0.013
CVE-2025-13974
MEDIUM CVSS 4.4
Find Similar
The Email Customizer for WooCommerce plugin for WordPress is vulnerable to Stored Cross-Site Scripting via email template content in all versions up to, and including, 2.6.7 due to insufficient input
NVD RRF 0.013
CVE-2025-49042
MEDIUM CVSS 5.9
Find Similar
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Automattic WooCommerce woocommerce allows Stored XSS.This issue affects WooCommerce: from n/a thro
NVD RRF 0.013
Page 1+ Next →