CVE-2024-37202
WordPress Ultimate Custom Add To Cart Button (Ajax) For WooCommerce by Binary Carpenter plugin <= 1.222.17 - Broken Access Control to XSS vulnerability
CVSS Score
0.0
EPSS Score
0.0%
EPSS Percentile
0th
Missing Authorization vulnerability in BinaryCarpenter Ultimate Custom Add To Cart Button (Ajax) For WooCommerce by Binary Carpenter custom-add-to-cart-button-for-woocommerce.This issue affects Ultimate Custom Add To Cart Button (Ajax) For WooCommerce by Binary Carpenter: from n/a through <= 1.222.17.
| CWE | CWE-862 |
| Vendor | binarycarpenter |
| Product | ultimate custom add to cart button (ajax) for woocommerce by binary carpenter |
| Published | Jul 12, 2024 |
| Last Updated | Apr 1, 2026 |
Stay Ahead of the Next One
Get instant alerts for binarycarpenter ultimate custom add to cart button (ajax) for woocommerce by binary carpenter
Be the first to know when new unknown vulnerabilities affecting binarycarpenter ultimate custom add to cart button (ajax) for woocommerce by binary carpenter are published โ delivered to Slack, Telegram or Discord.
Get Free Alerts โ
Free ยท No credit card ยท 60 sec setup
Affected Versions
BinaryCarpenter / Ultimate Custom Add To Cart Button (Ajax) For WooCommerce by Binary Carpenter
0 โค 1.222.17
References
patchstack.com: https://patchstack.com/database/Wordpress/Plugin/custom-add-to-cart-button-for-woocommerce/vulnerability/wordpress-ultimate-custom-add-to-cart-button-ajax-for-woocommerce-by-binary-carpenter-plugin-1-222-16-broken-access-control-to-xss-vulnerability?_s_id=cve patchstack.com: https://patchstack.com/database/vulnerability/custom-add-to-cart-button-for-woocommerce/wordpress-ultimate-custom-add-to-cart-button-ajax-for-woocommerce-by-binary-carpenter-plugin-1-222-16-broken-access-control-to-xss-vulnerability?_s_id=cve
Credits
Abdi Pranata | Patchstack Bug Bounty Program