XPlainer – Product FAQs for WooCommerce & AI FAQ Generator

Information

Software Type Plugin
Software Slug faq-for-woocommerce (view on wordpress.org)
Software Status Active
Software Author happydevs
Software Website wordpress.org
Software Downloads 37,314
Software Active Installs 1,000
Software Record Last Updated October 30, 2024

5 Vulnerabilities

Title Status CVE ID CVSS Researchers Date
XPlainer – WooCommerce Product FAQ [WooCommerce Accordion FAQ Plugin] <= 1.7.0 - Missing Authorization to Authenticated (Subscriber+) Stored Cross-Site Scripting Patched CVE-2024-5669 6.4 Lucio Sá July 8, 2024
XPlainer – WooCommerce Product FAQ [WooCommerce Accordion FAQ Plugin] <= 1.7.0 - Missing Authorization to Authenticated (Subscriber+) Settings Update Patched CVE-2024-5704 4.3 Lucio Sá July 8, 2024
XPlainer - WooCommerce Product FAQ <= 1.6.3 - Reflected Cross-Site Scripting Patched CVE-2024-37515 6.1 LVT-tholv2k July 5, 2024
Appsero <= 2.0.0 - Missing Authorization via handle_optin_optout Patched CVE-2024-32110 4.3 Dhabaleshwar Das April 11, 2024
Freemius SDK <= 2.5.9 - Reflected Cross-Site Scripting via fs_request_get Patched CVE-2023-33999 6.1 Rafie Muhammad July 18, 2023

Did you know Wordfence Intelligence provides free personal and commercial API access to our comprehensive WordPress vulnerability database, along with a free webhook integration to stay on top of the latest vulnerabilities added and updated in the database? Get started today!

Learn more

Want to get notified of the latest vulnerabilities that may affect your WordPress site?
Install Wordfence on your site today to get notified immediately if your site is affected by a vulnerability that has been added to our database.

Get Wordfence

The Wordfence Intelligence WordPress vulnerability database is completely free to access and query via API. Please review the documentation on how to access and consume the vulnerability data via API.

Documentation