10
/ 10
CRITICAL
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
Description
Improper Validation of Specified Quantity in Input vulnerability in ShapedPlugin, LLC Product Slider Pro for WooCommerce allows Malicious Software Implanted.
This issue affects Product Slider Pro for WooCommerce: from n/a before 3.5.3.
No patched version is available - the vendor has applied a fix to an existing release without publishing a new version. While the patch provided by the vendor is valid, releasing it under the existing version number leaves users unable to reliably determine whether they are running a patched or vulnerable installation. As a result, we treat this as an unpatched version.
This issue affects Product Slider Pro for WooCommerce: from n/a before 3.5.3.
No patched version is available - the vendor has applied a fix to an existing release without publishing a new version. While the patch provided by the vendor is valid, releasing it under the existing version number leaves users unable to reliably determine whether they are running a patched or vulnerable installation. As a result, we treat this as an unpatched version.
AI Analysis
Backdoor vulnerability in Product Slider Pro for WooCommerce plugin due to improper validation of specified quantity in input
Basic Information
ID
CVE-2026-49777
Source
Patchstack
Published
Jun 5, 2026 at 08:59
Affected Product
Vendor
ShapedPlugin, LLC
Product
Product Slider Pro for WooCommerce
Version
n/a
Affected Versions
ShapedPlugin, LLC Product Slider Pro for WooCommerce n/a
CWE Classification
AI Assessment
AI Score
10 / 10
AI Severity
Critical
Vendor
ShapedPlugin, LLC
Product
Product Slider Pro for WooCommerce
Version
< 3.5.3