CVE-2026-49777

Published: Giu 05, 2026 Last Modified: Giu 05, 2026

ExploitDB:

Other exploit source:

Google Dorks:

CRITICAL 10,0

Source: [email protected]

Attack Vector: network

Attack Complexity: low

Privileges Required: none

User Interaction: none

Scope: changed

Confidentiality: high

Integrity: high

Availability: high

Description

AI Translation Available

Improper Validation of Specified Quantity in Input vulnerability in ShapedPlugin, LLC Product Slider Pro for WooCommerce allows Malicious Software Implanted.

This issue affects Product Slider Pro for WooCommerce: from n/a before 3.5.3.

No patched version is available - the vendor has applied a fix to an existing release without publishing a new version. While the patch provided by the vendor is valid, releasing it under the existing version number leaves users unable to reliably determine whether they are running a patched or vulnerable installation. As a result, we treat this as an unpatched version.

1284

Improper Validation of Specified Quantity in Input

Incomplete

Abstraction: Base Structure: Simple

Common Consequences

Security Scopes Affected:

Other Integrity Availability

Potential Impacts:

Varies By Context Dos: Resource Consumption (Cpu) Modify Memory Read Memory

Applicable Platforms

All platforms may be affected

View CWE Details

https://patchstack.com/database/wordpress/plugin/woo-produc…

https://patchstack.com/database/wordpress/plugin/woo-product-slider-pro/vulnera…

CVE-2026-49777

Description

Improper Validation of Specified Quantity in Input

Common Consequences

Applicable Platforms

Iscriviti alla newsletter