Browse all 4 CVE security advisories affecting WC Product Table. AI-powered Chinese analysis, POCs, and references for each vulnerability.
WC Product Table is a WordPress plugin designed to display product information in customizable tables. Historically, it has been vulnerable to multiple security issues including cross-site scripting (XSS), remote code execution (RCE), and privilege escalation vulnerabilities. These flaws often stem from insufficient input validation and improper access controls. The plugin has accumulated four CVE records, highlighting ongoing security concerns. Notable characteristics include its handling of user-supplied data and permissions management, which have repeatedly created attack vectors. While no major public incidents have been widely documented, the consistent vulnerability pattern suggests potential for significant exploitation if not properly maintained and updated.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-39602 | WordPress WooCommerce Product Table Lite plugin <= 3.9.5 - Broken Access Control vulnerability — WooCommerce Product Table LiteCWE-862 | 4.3 | Medium | 2025-04-16 |
| CVE-2025-24596 | WordPress WooCommerce Product Table Lite plugin <= 3.8.7 - Broken Access Control vulnerability — WooCommerce Product Table LiteCWE-862 | 5.3 | Medium | 2025-01-24 |
| CVE-2024-43128 | WordPress WooCommerce Product Table Lite plugin <= 3.5.1 - Arbitrary Code Execution vulnerability — WooCommerce Product Table LiteCWE-94 | 6.5 | Medium | 2024-08-13 |
| CVE-2023-47519 | WordPress WooCommerce Product Table Lite Plugin <= 2.6.2 is vulnerable to Cross Site Request Forgery (CSRF) — WooCommerce Product Table LiteCWE-352 | 4.3 | Medium | 2023-11-18 |
This page lists every published CVE security advisory associated with WC Product Table. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.