CVE-2024-43128
CVSS 3.1 Score 6.5 of 10 (medium)
Details
Summary
CVE-2024-43128 is a critical Code Injection vulnerability affecting WooCommerce Product Table Lite versions 3.5.1 and below. This issue arises due to improper code generation controls, allowing attackers to inject malicious scripts into affected websites. Successful exploitation could lead to unauthorized access, data theft, or site defacement, posing a significant risk to organizations and individuals using this plugin. It is highly recommended that users upgrade to the latest version of WooCommerce Product Table Lite as soon as possible to mitigate potential threats.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.