CVE-2026-3830 Unknown — Exploit & Vulnerability Details NONE

Parameter	Value
Affected Versions	before 3.1.3
Type	CWE-89 SQL Injection
Vendor	Unknown
Public PoC	No

The Product Filter for WooCommerce by WBW WordPress plugin before 3.1.3 does not sanitize and escape a parameter before using it in a SQL statement, allowing unauthenticated users to perform SQL injection attacks

Weakness Type (CWE)

CWE-89 SQL Injection

Vulnerable Products

unknown:product filter for woocommerce by wbw

References 1

https://wpscan.com/vulnerability/768014fd-0403-4182-b19e-3d46c92d8755/

contact@wpscan.com

Share Post Share Share Share

Related Vulnerabilities

CVE-2025-15441

Unknown

None

CVE-2026-4432

Unknown

6.5

CVE-2026-4338

Unknown

None

CVE-2026-4079

Guaven

6.5

CVE-2026-1900

Unknown

6.5

Menu

CVE-2026-3830

Weakness Type (CWE)

Vulnerable Products

References 1

Related Vulnerabilities

CVE-2025-15441

CVE-2026-4432

CVE-2026-4338

CVE-2026-4079

CVE-2026-1900

CVE Details

Editor's Choice

Menu

CVE-2026-3830

Weakness Type (CWE)

Vulnerable Products

References 1

Related Vulnerabilities

CVE-2025-15441

CVE-2026-4432

CVE-2026-4338

CVE-2026-4079

CVE-2026-1900

CVE Details

Editor's Choice

Stay informed on cybersecurity