YITH WooCommerce Quick View

Vulnerabilities 5Slug yith-woocommerce-quick-viewLatest version 2.13.0WordPress.org →

Minimum safe version

2.7.1

Update to 2.7.1 or later to address 5 fixable vulnerabilities

Latest available2.13.0
Medium 6.4
2025-12-13< 2.7.1

YITH WooCommerce Quick View <= 2.7.0 - Authenticated (Contributor+) Stored Cross-Site Scripting via yith_quick_view Shortcode

EUVDWordfenceCVE
N/A
2022-11-11< 1.21.1

YITH plugins by YITHEMES <= (Various Versions) - Cross-Site Request Forgery

WordfenceCVEWPScan
N/A
2022-11-11< 1.21.1

YITH plugins by YITHEMES <= (Various Versions) - Missing Authorization

Wordfence
N/A
< 1.21.1

WordPress YITH WooCommerce Quick View Plugin <= 1.21.0 is vulnerable to Cross Site Request Forgery (CSRF)

Patchstack