varktech CVE Vulnerabilities & CVE List (3)

Products (CPE): — CVEs: 3

varktech vulnerability overview

Aggregates CVE and security vulnerability intelligence across all varktech-related products, including CVSS, EPSS, publication dates, and vulnerability intelligence data.

Historical issues mainly involve vendor risk sql injection and vendor risk cross-site scripting and related problems; some flaws may lead to vendor impact data exposure, affecting vendor surface production workloads scenarios.

Vulnerability distribution trend (last 24 months)

CVE	Summary	Source	Max CVSS	EPSS %	Published	Updated
CVE-2023-41240	Missing Authorization vulnerability in Vark Pricing Deals for WooCommerce.This issue affects Pricing Deals for WooCommerce: from n/a through 2.0.3.2.	[email protected]	5.3	0.29%	2024-06-12	2026-06-17
CVE-2023-30492	Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in Vark Minimum Purchase for WooCommerce plugin <= 2.0.0.1 versions.	[email protected]	6.5	0.31%	2023-10-26	2026-06-17
CVE-2022-1057	The Pricing Deals for WooCommerce WordPress plugin through 2.0.2.02 does not properly sanitise and escape a parameter before using it in a SQL statement via an AJAX action available to unauthenticated users, leading to an unauthenticated SQL injection	[email protected]	9.8	6.66%	2022-07-11	2026-06-17

cvelogic Threat Intelligence