Product Attachment for WooCommerce

Vulnerabilities 7Slug woo-product-attachmentLatest version 2.3.2WordPress.org →

Minimum safe version

2.2.0

Update to 2.2.0 or later to address 7 fixable vulnerabilities

Latest available2.3.2 ✓

Medium 6.3

2024-10-16< 2.1.3

Freemius SDK <= 2.4.2 - Missing Authorization Checks

Medium 4.3

2023-10-03< 2.2.0

CVE-2023-40212

N/A

2023-07-18< 2.1.8

WordPress WooCommerce Product Attachment Plugin <= 2.1.7 is vulnerable to Cross Site Scripting (XSS)

N/A

2022-03-04< 2.1.3

Freemius SDK <= 2.4.2 - Missing Authorization Checks

N/A

2018-06-03< 1.1.3

WordPress WooCommerce Product Attachment plugin <= 1.1.2 - Authenticated Stored Cross-Site Scripting (XSS) vulnerability

N/A

2022-02-28< 2.1.3

WordPress WooCommerce Product Attachment plugin <= 2.1.2 - Sensitive Information Disclosure vulnerability

N/A

2022-02-28< 2.1.3

WordPress WooCommerce Product Attachment plugin <= 2.1.2 - Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability