WooCommerce Product Table Lite < 3.8.7 – Unauthenticated Arbitrary Shortcode Execution & Reflected Cross-Site Scripting | CVE 2024-10899 | Plugin Vulnerabilities

Description

The The WooCommerce Product Table Lite plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 3.8.6. This is due to the software allowing users to execute an action that does not properly validate a value before running do_shortcode. This makes it possible for unauthenticated attackers to execute arbitrary shortcodes. The same 'id' parameter is vulnerable to Reflected Cross-Site Scripting as well.

Affects Plugins

wc-product-table-lite

Fixed in 3.8.7

References

CVE

URL

https://www.wordfence.com/threat-intel/vulnerabilities/id/c9b010ff-8a4a-4553-bb2b-d58a254d7ee4

Classification

Type

RCE

OWASP top 10

CWE

CVSS

Miscellaneous

Original Researcher

Arkadiusz Hydzik

Verified

No

WPVDB ID

d8080fd6-9a45-4d2b-96d8-9f9e8f84b3a0

Timeline

Publicly Published

2024-11-19 (about 1 year ago)

Added

2024-11-19 (about 1 year ago)

Last Updated

2024-11-20 (about 1 year ago)

Other

Published

Title

Published

2024-05-01

Title

Booster for WooCommerce < 7.1.9 - Unauthenticated Arbitrary Shortcode Execution

Published

2005-06-29

Title

WordPress <= 1.5.1.2 - XML-RPC Eval Injection

Published

2024-12-28

Title

Ninja Forms < 3.8.23 - Subscriber+ Arbitrary Shortcode Execution

Published

2023-09-29

Title

OpenHook < 4.3.1 - Subscriber+ Remote Code Execution

Published

2026-04-03

Title

Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content – ProfilePress < 4.16.12 - Unauthenticated Arbitrary Shortcode Execution via Checkout Billing Fields