Browse all 17 CVE security advisories affecting Pluggabl. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Pluggabl is a software platform enabling third-party plugin extensions for web applications, commonly used to enhance functionality across various industries. Historically, it has been susceptible to remote code execution, cross-site scripting, and privilege escalation vulnerabilities, often stemming from insufficient input validation and improper access controls. With 17 CVEs recorded, these issues have allowed attackers to execute arbitrary code, steal session cookies, and elevate privileges to administrative levels. Notable incidents include multiple RCE flaws in plugin loading mechanisms and persistent XSS vulnerabilities in user-generated content handling, highlighting ongoing security challenges in its architecture.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-32586 | WordPress Booster for WooCommerce plugin < 7.11.3 - Broken Access Control vulnerability — Booster for WooCommerceCWE-862 | 5.3 | Medium | 2026-03-17 |
| CVE-2025-64380 | WordPress Booster for WooCommerce plugin <= 7.3.2 - Cross Site Scripting (XSS) vulnerability — Booster for WooCommerceCWE-79 | 6.5 | Medium | 2025-11-13 |
| CVE-2025-64379 | WordPress Booster for WooCommerce plugin <= 7.4.0 - Broken Access Control vulnerability — Booster for WooCommerceCWE-862 | 4.3 | Medium | 2025-11-13 |
| CVE-2025-64196 | WordPress Booster for WooCommerce plugin <= 7.2.5 - Cross Site Scripting (XSS) vulnerability — Booster for WooCommerceCWE-79 | 7.1 | High | 2025-11-06 |
| CVE-2024-13708 | Booster for WooCommerce 4.0.1 - 7.2.4 - Unauthenticated Stored Cross-Site Scripting — Booster for WooCommerceCWE-434 | 7.2 | High | 2025-04-04 |
| CVE-2024-13744 | Booster for WooCommerce 4.0.1 - 7.2.4 - Unauthenticated Arbitrary File Upload — Booster for WooCommerceCWE-434 | 8.1 | High | 2025-04-04 |
This page lists every published CVE security advisory associated with Pluggabl. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.