Gravitymaster Vulnerabilities
Comprehensive security vulnerability database for Gravitymaster products
2
0
1
0
Severity Distribution
| Description | Vendor / Product | Exploit Status | |||
|---|---|---|---|---|---|
| CVE-2023-7151 | 6.1 | This vulnerability allows an attacker to inject malicious scripts into the website, which can then execute in the browsers of high-privilege users like administrators. It occurs because the plugin fails to properly clean up the page parameter before displaying it, making it particularly risky for sites using older versions of the plugin. | gravitymasterproduct enquiry for woocommerce | Exploit Available | about 2 years agoJan 16, 2024 |
| CVE-2023-47512 | 6.1 | This vulnerability allows an attacker to inject malicious scripts into web pages viewed by users of the Gravity Master Product Enquiry plugin for WooCommerce, potentially leading to unauthorized actions or data theft. It can be exploited by anyone without needing to log in, as long as they can trick users into clicking on a specially crafted link. | gravitymasterproduct enquiry for woocommerce | Theoretical | over 2 years agoNov 16, 2023 |
About Gravitymaster Security
This page tracks all publicly disclosed security vulnerabilities (CVEs) affecting Gravitymaster products. Our database is updated in real-time from the National Vulnerability Database (NVD) and enriched with exploit information from GitHub and other security research sources.
Each CVE listing includes CVSS severity scores, exploit availability status, AI-powered vulnerability summaries, and links to official patches and security advisories.